sund-group.com

.com crawl

First seen 2026-04-20 · Last seen 2026-05-19 · ok HTTP/1.1 200 2058 ms crawled 2026-05-13

DE · 185.243.135.144 · AS15817 Mittwald CM Service GmbH & Co. KG

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title

SUND Group | Einweg. Weiter gedacht.

Description

Unter einem gemeinsamen Dach bündeln wir die Kompetenzen von vier erfolgreichen Unternehmen der SUND Group: DEISS, FIPP, BINGOLD und SUND Digital.

Language

de-DE

Generator

TYPO3 CMS

Canonical

https://www.sund-group.com/

Translations

de-de
en

Open Graph

title: SUND Group
author: SUND Group
locale: de_DE
site name: SUND Group

Technology

Server: Apache

Analytics

Google Tag Manager

Cookie consent

Cookiebot

Third-party hosts loaded (2)

consent.cookiebot.com×1
www.googletagmanager.com×1

Social

Contact

Phone

Registration

Registrar

IONOS SE

Created

2017-12-13

Expires

2026-12-13 207 days left

Updated

2025-12-14

Name servers

ns1025.ui-dns.com
ns1042.ui-dns.biz
ns1049.ui-dns.org
ns1065.ui-dns.de

DNS records live

NS

ns1025.ui-dns.com
ns1042.ui-dns.biz
ns1049.ui-dns.org
ns1065.ui-dns.de

MX

10 mail.deiss.de
20 mx00.ionos.de
21 mx01.ionos.de

TXT

Show 5 TXT records

ZOOM_verify_aVy7ffH3TP6i2_FsfLOGQw
google-site-verification=_PakzfR91x8ZGIy4ljjO2HyxWKjDQyRdLVgpLEBG9EM
bw=c0qCt2MNW50DEMfAx15qbxUXDVC1SvVKnTM5Eid8BvBp
MS=ms54134550
apple-domain-verification=VCXHeYTDGSxk8fF9

Email authentication partial

SPF

v=spf1 mx include:spf.protection.outlook.com include:agenturserver.de include:_spf.rexx-suite.com -all

strict (-all)

DMARC

v=DMARC1; p=none; rua=mailto:it@sund-group.com; fo=0; adkim=r; aspf=r; rf=afrf; sp=none

policy: none (monitoring only) · sp=none

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq7dq7xEdXsmHTg2jWDItpTw9PbCez2S2kZQeGIw53uA5plX9Y+DUoVL6HVrP7Mt7i0p0XIYnADA1Bg…

selectors probed

Certificate (current)

R13

from 2026-03-24 to 2026-06-23

Expires in 34 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.sund-group.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(), autoplay=*, camera=(), cross-origin-isolated=*, display-capture=(), encrypted-media=(), fullscreen=(), geolocation=(self), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=*, publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), xr-spatial-tracking=(), clipboard-read=(), clipboard-write=(), gamepad=(), hid=(), idle-detection=(), serial=(), window-management=()
x-content-type-options: nosniff
content-security-policy: default-src *.ddev.site *.leadinfo.com *.leadinfo.net *.visualwebsiteoptimizer.com *.google.com *.bing.com *.bing.net *.matomo.cloud *.cookiebot.com *.mercury.ai *.leadinfo.net *.leadinfo.com *.google-analytics.com *.gstatic.com *.googleapis.com *.mapbox.com *.g.doubleclick.net *.webspaceconfig.de *.sund-group.com; frame-src *.youtube-nocookie.com *.doubleclick.net *.matomo.cloud *.cookiebot.com; style-src-elem 'self' 'unsafe-inline' *.mercury.ai *.googleapis.com *.mapbox.com; style-src 'self' 'unsafe-inline' *.webspaceconfig.de; img-src 'self' data: *.ytimg.com *.google.com *.bing.com *.visualwebsiteoptimizer.com *.bing.net *.google-analytics.com *.googletagmanager.com *.gstatic.com *.googleapis.com *.cookiebot.com *.webspaceconfig.de *.sund-group.com; script-src 'self' 'unsafe-inline' 'unsafe-inline' *.cookiebot.com *.webspaceconfig.de *.googletagmanager.com *.google-analytics.com *.sund-group.com; script-src-elem 'self' 'unsafe-inline' *.leadinfo.net *.youtube.com *.bing.com *.mercu
strict-transport-security: max-age=31536000; includeSubDomains; preload