step.jobs
HTML metadata
Technology
- Server
- Apache
- Cookie consent
-
- Cookiebot
Third-party hosts loaded (3)
- cdn.eu.talention.com×3
- cdnjs.cloudflare.com×1
- consent.cookiebot.com×1
Social
Contact
- Phone
Registration
- Registrar
- Key-Systems GmbH
- Created
- 2025-07-10
- Expires
- 2026-07-10 50 days left
- Updated
- 2025-11-24
- Name servers
-
- ns3.second-ns.de
- ns1.your-server.de
- ns.second-ns.com
DNS records live
- NS
-
- ns.second-ns.com
- ns1.your-server.de
- ns3.second-ns.de
- MX
-
- 10 www620.your-server.de
Email authentication weak
- SPF
-
v=spf1 +a +mx ?allneutral (?all) - DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
R12
Expires in 44 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- weak content type protection
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- permissions-policy
camera=(), microphone=(), geolocation=(), payment=(), usb=(), fullscreen=(self)- x-content-type-options
nosniff, nosniff- content-security-policy
default-src 'self'; base-uri 'self'; object-src 'none'; frame-ancestors 'self'; img-src 'self' data: https:; font-src 'self' data: https:; style-src 'self' 'unsafe-inline' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://consent.cookiebot.com https://consentcdn.cookiebot.com https://cdn.eu.talention.com; connect-src 'self' https:; frame-src 'self' https://consent.cookiebot.com https://consentcdn.cookiebot.com/;- strict-transport-security
max-age=31536000; includeSubDomains
Links to (8)
- facebook.com×1
- instagram.com×1
- kununu.com×1
- linkedin.com×1
- tiktok.com×1
- wa.me×1
- xing.com×1
- youtube.com×1