indexo.dev

tesa.es

.es crawl

First seen 2026-04-18 · Last seen 2026-05-13 · ok HTTP/1.1 200 10823 ms crawled 2026-05-13

IE · 52.16.8.119 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Líder en Control de Accesos y Cerraduras | TESA ASSA ABLOY
Description
TESA ASSA ABLOY es el principal fabricante español de soluciones de cierre y control de accesos para el mercado residencial e institucional.
Language
es
Canonical
https://www.tesa.es/es
Translations
  • en
  • es
  • fr
  • pt

Open Graph

url
https://www.tesa.es/es
title
Líder en Control de Accesos y Cerraduras
description
TESA ASSA ABLOY es el principal fabricante español de soluciones de cierre y control de accesos para el mercado residencial e institucional.

Technology

Third-party hosts loaded (1)

  • gw-assets.assaabloy.com×6

DNS records live

NS
  • dns1.cscdns.net
  • dns2.cscdns.net
MX
  • 0 tesa-es.mail.protection.outlook.com
TXT
  • 87lz9lm85qmz0mcdtxyj44vh4g8c6snv
  • kR93dZT+UkIJ8y7xYFHIiRVQkYiV1UAf5dXRMbKmbDmDlIhpnVSsD5/mOj1ACrJ/4wAs41sE8iS6z/IfiLKD2A==
Verified for
  • Meta

Email authentication strong

SPF
v=spf1 include:spf.protection.outlook.com include:eu.zcsend.net include:tesa-entr.com include:cysnet.info ip4:141.81.167.228 ip4:82.223.0.24 ip4:85.214.18.231 ip4:194.30.15.32 -all
strict (-all)
DMARC
v=DMARC1; p=reject; rua=mailto:c617a603d59c866@rep.dmarcanalyzer.com; ruf=mailto:c617a603d59c866@for.dmarcanalyzer.com; pct=100; fo=1
policy: reject (enforced)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArtkTgESb/nWinjtIRMM58EU9jSK1jSzzjHfbVXHDyhgu6mXFExKYJzcJRjTGyblKDJpsevpJLkGXNo…
  • selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0GgWa3UmW+JY8BGbRBGehe63hKQR4o6Jlwt8zot+hfXYprccCR00Q7e9vqm+iNy9/RBdXxbTDobkTY…
selectors probed

Certificate (current)

R13
from 2026-03-30 to 2026-06-28
Expires in 39 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.tesa.es/es

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • weak frame protection
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN, SAMEORIGIN
permissions-policy
geolocation=(), midi=(), sync-xhr=(*), microphone=(), camera=(), magnetometer=(), gyroscope=(), fullscreen=(self "https://www.youtube-nocookie.com" "https://app.chat.zuria.kuik.tech"), payment=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; connect-src https: wss:; font-src 'self' https://fonts.gstatic.com; frame-src https:; img-src https: data:; media-src https: blob:; worker-src blob:; object-src 'none'; script-src https: 'unsafe-inline' 'unsafe-eval'; style-src https: 'unsafe-inline'; form-action https:; report-uri https://csp-reports.globalweb.aws.assaabloy.com/reports;
strict-transport-security
max-age=31557600

Linked from (1)