thuecat.org

.org crawl

First seen 2026-04-20 · Last seen 2026-05-14 · ok HTTP/1.1 200 487 ms crawled 2026-05-14

NL · 20.31.26.65 · AS8075 Microsoft Corporation

Reputation 100/100

Classifying

HTML metadata

Title: OTG-Service

Registration

Registrar

Deutsche Telekom AG

Created

2019-06-07

Expires

2027-06-07 382 days left

Updated

2026-05-10

Name servers

ns1.telekom-domains.de
ns2.telekom-domains.de

DNS records live

NS

ns1.telekom-domains.de
ns2.telekom-domains.de

Verified for

Google
Meta

Email authentication no MX

SPF

not published

DMARC

not published

DKIM

s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAql7r65BdOIAH/x6kbFXFqjxZGE4kRYkWqQo1DKZHbOtw6G2gnq/hCiafnDQiBo4i7SDQGFqt7+IYbrbRju…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDGMLfArsWt3Y38br1Wglp94ujsOSrawL+kmlnJ0f4VwOpC42iHulPSGXvkzoznpoT6iiUnzOMINL40tVEcqs3c7m…

selectors probed

Certificate (current)

R13

from 2026-03-25 to 2026-06-23

Expires in 33 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://thuecat.org/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: same-origin
x-frame-options: deny
x-content-type-options: nosniff
content-security-policy: default-src 'self' *.thuecat.org thuecat.org *.thh.tours thh.tours *.data.visitberlin.de data.visitberlin.de *.tourism.cloud tourism.cloud *.web-of-data.reisen web-of-data.reisen ; script-src 'self' 'sha256-xfTbtWk8kVI65iLJs8LB3lWf2g0g10DS71pDdoutFHc=' 'sha256-tuKkEf3LPSeyF8feKxOP/mEsa6nRR8toFxvAwO9cuhE='; style-src 'self' 'unsafe-inline' https://stackpath.bootstrapcdn.com; connect-src 'self' https://www.gravatar.com; img-src 'self' data: blob: *
strict-transport-security: max-age=31536000; includeSubDomains