indexo.dev

tenderzen.de

.de crawl

First seen 2026-05-06 · Last seen 2026-05-13 · ok HTTP/1.1 200 1097 ms crawled 2026-05-13

SE · 135.116.80.66 · AS8075 Microsoft Corporation

Reputation 94/100 dmarc monitor-only

sector b2b services type homepage

HTML metadata

Title
Tender Zen - Mehr Aufträge gewinnen mit KI-gestützter Ausschreibungssuche
Description
Relevante Ausschreibungen finden, Angebotszeit um 66% reduzieren und Erfolgsquote steigern – mit KI-gestützter Ausschreibungssuche für Bau- und Ingenieurbüros.
Language
de
Canonical
https://www.tenderzen.de/
Translations
  • de
  • en

Open Graph

url
https://www.tenderzen.de/
title
Tender Zen - Win More Projects with AI
locale
de_DE
description
AI-powered tender management for construction services, architecture, and engineering firms. Reduce proposal time by 66%.

Technology

Analytics
  • Google Analytics
Cookie consent
  • Termly
Fonts
  • Google Fonts
Third-party hosts loaded (7)
  • i.ytimg.com×3
  • fonts.googleapis.com×2
  • app.termly.io×1
  • fonts.gstatic.com×1
  • px.ads.linkedin.com×1
  • www.google-analytics.com×1
  • www.youtube.com×1

Registration

Updated
2025-09-24
Name servers
  • dns1.registrar-servers.com.
  • dns2.registrar-servers.com.

DNS records live

NS
  • dns1.registrar-servers.com
  • dns2.registrar-servers.com
MX
  • 1 smtp.google.com
TXT
  • brevo-code:83a276c3ef8db7efbb03218c79bf3731

Email authentication partial

SPF
v=spf1 include:spf.brevo.com include:_spf.google.com ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:rua@dmarc.brevo.com
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

R12
from 2026-04-12 to 2026-07-11
Expires in 53 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.tenderzen.de/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
findings
  • CSP allows unsafe inline scripts/styles
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
DENY
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' https://app.termly.io https://cdn.termly.io https://js.stripe.com https://snap.licdn.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdn.termly.io; img-src 'self' data: blob: https:; font-src 'self' data: https://fonts.gstatic.com; connect-src 'self' wss: https:; media-src 'self'; worker-src 'self' blob:; manifest-src 'self'; object-src 'none'; frame-src 'self' https://js.stripe.com https://app.termly.io; frame-ancestors 'none'; base-uri 'self'; form-action 'self' https:
strict-transport-security
max-age=31536000; includeSubDomains

Links to (8)