indexo.dev

vdi-garage.de

.de crawl

First seen 2026-04-14 · Last seen 2026-05-06 · ok HTTP/1.1 200 4097 ms crawled 2026-05-08

DE · 194.245.120.112 · AS5517 CSL Computer Service Langenbach GmbH

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Bildungs- und Freizeitangebote in Leipzig | VDI-GaraGe: VDI GaraGe
Description
Technische Allgemeinbildung, authentisch und praxisnah vermittelt. Angebote für Ferien, Schule oder zur Berufsorientierung. Mit starken, lokalen Kooperationspartnern wie Porsche fördern wir den Nachwuchs.
Language
de
Generator
TYPO3 CMS
Canonical
https://vdi-garage.de/

Open Graph

title
Home
description
Technische Allgemeinbildung, authentisch und praxisnah vermittelt. Angebote für Ferien, Schule oder zur Berufsorientierung. Mit starken, lokalen Kooperationspartnern wie Porsche fördern wir den Nachwuchs.

Technology

Server
Apache
Cookie consent
  • Cookiebot

Third-party hosts loaded (1)

  • consent.cookiebot.com×1

Social

Contact

Email
Phone

Registration

Updated
2024-03-13
Name servers
  • x.ns.joker.com.
  • y.ns.joker.com.
  • z.ns.joker.com.

DNS records live

NS
  • x.ns.joker.com
  • y.ns.joker.com
  • z.ns.joker.com
MX
  • 0 vdigarage-de0i.mail.protection.outlook.com
TXT
  • ms11363984

Email authentication weak

SPF
v=spf1 include:spf.protection.outlook.com -all
strict (-all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

Sectigo Public Server Authentication CA DV R36
from 2026-03-03 to 2027-04-04
Expires in 319 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://vdi-garage.de/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
  • cross-origin-embedder-policy
  • cross-origin-resource-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak frame protection
  • weak content type protection
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN, sameorigin
permissions-policy
accelerometer=(), autoplay=(), camera=(), display-capture=(), encrypted-media=(), fullscreen=(), gamepad=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), sync-xhr=(self), usb=(), screen-wake-lock=(), xr-spatial-tracking=()
x-content-type-options
nosniff, nosniff
content-security-policy
default-src 'self' https://*.ddev.site:9000 wss://*.ddev.site:9000; connect-src 'self' https://*.ddev.site:9000 wss://*.ddev.site:9000 https://*.cookiebot.com; frame-src 'self' https://*.ddev.site:9000 wss://*.ddev.site:9000 https://*.cookiebot.com; img-src 'self' https://*.ddev.site:9000 wss://*.ddev.site:9000 data: https://*.cookiebot.com; script-src 'self' https://*.ddev.site:9000 wss://*.ddev.site:9000 data: 'unsafe-inline' 'unsafe-eval' https://*.cookiebot.com 'report-sample'; style-src 'self' https://*.ddev.site:9000 wss://*.ddev.site:9000 data: 'unsafe-inline' 'report-sample'; report-uri https://vdi-garage.de/@http-reporting?csp=report&requestTime=1778208813420835
strict-transport-security
max-age=63072000, max-age=31536000; includeSubDomains
cross-origin-opener-policy
same-origin
cross-origin-embedder-policy
unsafe-none
cross-origin-resource-policy
cross-origin

Links to (7)