spd-hessen.de

.de crawl

First seen 2026-04-18 · Last seen 2026-05-15 · ok HTTP/1.1 200 2627 ms crawled 2026-05-12

US · 3.173.161.70 · AS16509 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: SPD Hessen
Description: Hier erhalten Sie Informationen zur SPD Hessen, der Sozialdemokratischen Partei Deutschlands in Hessen und ihrer SPD-Politik für Hessen.
Language: de-DE
Generator: soz.is
Canonical: https://www.spd-hessen.de/

Open Graph

url: https://www.spd-hessen.de/
title: SPD Hessen – Die besten Kräfte für Hessen.
description: Hier erhalten Sie Informationen zur SPD Hessen, der Sozialdemokratischen Partei Deutschlands in Hessen und ihrer SPD-Politik für Hessen.

Technology

CDN: Amazon CloudFront
CMS: WordPress

Social

Registration

Updated

2024-04-24

Name servers

ns-1331.awsdns-38.org.
ns-1885.awsdns-43.co.uk.
ns-46.awsdns-05.com.
ns-585.awsdns-09.net.

DNS records live

NS

ns-1331.awsdns-38.org
ns-1885.awsdns-43.co.uk
ns-46.awsdns-05.com
ns-585.awsdns-09.net

MX

10 mail.barracuda.de

TXT

google-site-verification=xaA89YUIELKvaUZfwDPFp_qZI-5qnmNZjbbVvrA10E4
loaderio=a7decae00dbe904e238afc753d35402f

Email authentication partial

SPF: v=spf1 include:_spf.createsend.com include:spf.barracuda.de -all
strict (-all)
DMARC: v=DMARC1; p=none;
policy: none (monitoring only)
DKIM: no key found at common selectors

Certificate (current)

Amazon RSA 2048 M04

from 2026-04-24 to 2026-11-08

Expires in 173 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.spd-hessen.de/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: same-origin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self'; default-src 'self' https://civolve.ai data: blob:; base-uri 'self'; script-src * 'unsafe-eval' 'unsafe-inline'; style-src * 'unsafe-inline'; img-src * data:; font-src 'self' *.gstatic.com *.embedly.com static.spd.de https://civolve.ai data:;connect-src 'self' https://civolve.ai *.reddit.com *.akamaihd.net *.spoe.at rose.spoe.at *.google-analytics.com google-analytics.com www.facebook.com altruja.de *.altruja.de dataservices.spd.de; media-src * blob: data: 'self'; object-src 'self'; frame-src * ; manifest-src 'self'; worker-src 'self' blob: data: ; form-action *; upgrade-insecure-requests; block-all-mixed-content;
strict-transport-security: max-age=31536000;

Links to (5)

Linked from (16)