uestra.de

HTML metadata

Technology

Server

myracloud

Third-party hosts loaded (2)

• cloud.ccm19.de×1
• gvh.hafas.de×1

Social

• facebook
• instagram
• youtube

Contact

Phone

• 4951116680

Registration

Updated

2018-03-23

Name servers

• ns2.htp-tel.de.
• ns.htp-tel.de.

DNS records live

NS

• ns.htp-tel.de
• ns1.htp-tel.de
• ns2.htp-tel.de

MX

• 0 uestra-de.mail.protection.outlook.com

TXT

Show 10 TXT records

• MS=ms64015299
• v=spf1 ip4:212.59.34.18 ip4:81.14.173.254 include:spf.protection.outlook.com include:spfhard.crsend.com include:spf-de.emailsignatures365.com -all
• swisssign-check=df_mscajB1LZkNahbMYScLuwjSY
• uestralabweb.azurewebsites.net
• apple-domain-verification=YSg2NzE0EWenYf26
• MS=15337C91920B51CAD0AF6541CD92B7C49D53A002
• atlassian-domain-verification=uklsB6TbbFNpVirzoMnhtWa5/pCoH5nX30eHyTqPDEbFJzk7WJuV4jf3fPsPvtD9
• ms-domain-verification=627d835a-6fc7-4aa2-880e-c62095c7bc42
• google-site-verification=p8AGb2zfg6r4NE0XmbUyR1hRbVLUbPCMtQbG8JDzSEs
• adobe-idp-site-verification=2b2460cfd2e87b602b5b01ee46af6a0cf992fe58d7c09d82b2b344119d6d7260

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.uestra.de/

present

• strict-transport-security
• content-security-policy
• content-security-policy-report-only
• x-frame-options
• x-content-type-options
• referrer-policy

findings

• CSP allows unsafe inline scripts/styles
• CSP uses wildcard sources
• missing Permissions Policy

Links to (12)

• der-metronom.de×2
• erixx.de×2
• facebook.com×2
• gvh.de×2
• instagram.com×2
• sbahn-hannover.de×2
• shgmobil.de×2
• start-ni-mitte.de×2
• westfalenbahn.de×2
• youtube.com×2
• bahn.de×2
• der-enno.de×2

Linked from (8)

• triathlon-hannover.de×2
• cupderregion.de×2
• marathon-hannover.de×2
• hannover-united.de×2
• sbahn-hannover.de×2
• hannover-indians.de×2
• unter-einem-dach.org×1
• landesgartenschau-badnenndorf.de×1