superheldenkids.de

HTML metadata

Technology

Server

nginx

CMS

WordPress

Third-party hosts loaded (2)

• gmpg.org×1
• scripts.cdn.klicktipp.cloud×1

Social

• facebook
• instagram
• youtube

Registration

Updated

2026-02-17

Name servers

• ns1.siteground.net.
• ns2.siteground.net.

DNS records live

NS

• ns1.siteground.net
• ns2.siteground.net

MX

• 9 superheldenkids-de.mail.protection.outlook.com

TXT

• MS=ms94322560
• google-site-verification=42L8GwF2rXWqCZV1gqE82UnSwzGFPCh_2doGx87oxaE

Email authentication strong

SPF

v=spf1 +a +mx include:superheldenkids.de.spf.auto.dnssmarthost.net include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; fo=1; rua=mailto:d4kgqw0e@rua.dmarceye.com; ruf=mailto:it@superheldenkids.de; ri=86400

policy: quarantine

DKIM

• default: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC54uTSkVM45yYGrfJVZZ+u86qHq2azhmfxJH8Dl1ms4PXM84A1Gg7kx1ZtGY1sJ7xoZmeSJe5M3HQ3QZv8yc…
• selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqryXU5iYPWitpaJ5/6r+A2BR6mGVEPO++XMx5gCQ1IiZ8iYM/sGe3hudyfAQ11gzaaRv1IrhArFgUE…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://www.superheldenkids.de/

present

• content-security-policy
• x-content-type-options

findings

• missing HSTS
• CSP allows unsafe inline scripts/styles
• CSP uses wildcard sources
• missing frame protection
• missing Referrer Policy
• missing Permissions Policy

Links to (7)

• facebook.com×2
• frontiersin.org×2
• instagram.com×2
• nature.com×2
• wiley.com×2
• youtube.com×2
• germanstartupawards.de×1

Linked from (2)

• zebra-award.de×2
• gesundeschule-fs.de×2