indexo.dev

vzug.com

.com crawl

First seen 2026-04-13 · Last seen 2026-05-08 · ok HTTP/1.1 200 840 ms crawled 2026-05-06

CH · 20.208.5.33 · AS8075 Microsoft Corporation

Reputation 100/100

Classifying

HTML metadata

Title
V-ZUG AG
Language
en

Technology

CDN
Cloudflare
Analytics
  • Google Tag Manager

Third-party hosts loaded (1)

  • googletagmanager.com×2

Registration

Registrar
Ascio Technologies, Inc. Danmark - Filial af Ascio technologies, Inc. USA
Created
2001-04-17
Expires
2027-04-17 332 days left
Updated
2026-04-18
Name servers
  • heather.ns.cloudflare.com
  • sid.ns.cloudflare.com

DNS records live

NS
  • heather.ns.cloudflare.com
  • sid.ns.cloudflare.com
MX
  • 10 vzug-com.mail.protection.outlook.com
TXT
Show 23 TXT records
  • facebook-domain-verification=spgko8hdg06rhbllv7jkmti9hgec8q
  • pinterest-site-verification=799d2e2b3cd5a24ee4b58a5418cd087e
  • swisssign-check=NpWlXdD58eEDZgjAtnSH43Q1dPg
  • hsh8kc0dxw4j3xstxr0nv3rqypr5gp7j
  • 57ks76lmrkz3w3pgv993cd2k3hm4rg56
  • MS=ms84472792
  • msfpkey=4z5konvj6z2yqnrep8w67ihzf
  • Sendinblue-code:6ef1bdca0140128a0b0cdffd769c529f
  • token:hsh8kc0dxw4j3xstxr0nv3rqypr5gp7j
  • _telesec-domain-validation=312988_2022-11-30_n4xrgBNnhR7U8rDeqY7Ol3NoFbU9L54GrDUMathsBWt1peA7SO
  • V0Z4U17375
  • MS=ms29450233
  • _telesec-domain-validation=293759_2021-10-06_rJBDdkSdqeWliJaxcvsCOYJqje7M33RwKiuyQQyuF5rgKcgx08
  • JgEl+XYfNcuGZwXZEkWHb9R1Bhw6qZRnfCyM1DclCpFOUXibtAi6ctWFV1I67fbXCRn1St1ysrLbxeGnoWEztw==
  • postal-verification lNO368wNPyzN4tBshobD9lTJtZjniLVj
  • google-site-verification=9ZGal3siBGHY1QK0ggxVDp2u9xcK6KbApZBfvEIFuZw
  • cAamNljn4K^9G^gffuTaaY&HWbpZTcUoTYWA4seTOxCHPtfl%NPjd61B1X3WtRc#EtUSS4Luokk1Puz9X^X0Y!Zfh198wVVXCLU
  • google-gws-recovery-domain-verification=53083470
  • apple-domain-verification=CEfLZdzgmSQyWrtY
  • miro-verification=10e3240dac54cb17e714d9bec7fca39e9027e4ea
  • atlassian-domain-verification=1SuRHYm6ebnDsUfUr9N4N/ZS0FKTLr2rlDbajsoWO6Xy4RacmwsieqGDOCh5p65J
  • d365mktkey=vxu9L9Nxwh8xYXEPc4xVIGh1LWfUxxsVkzMmrE6vxvkx
  • google-site-verification=NPVXim2inTphT6Oa5DrkM1LGWjfLlJHLnzkLw7PoV0c

Email authentication strong

SPF
v=spf1 include:spf.protection.outlook.com include:spf1.vzug.com include:spf2.vzug.com include:spf3.vzug.com ~all
softfail (~all)
DMARC
v=DMARC1; p=quarantine; rua=mailto:dmarc.rua@vzug.com; ruf=mailto:dmarc.ruf@vzug.com;
policy: quarantine
DKIM
Show 6 DKIM selectors
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuzoW9I4YumlYLQ22SnjUC785X2NuQpT6o3xnDusKz0P0gAtzQ+xTD+9IxPncT6pbAxmz0022ZxszPI…
  • selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu5oDAtX1UTPs6C9DxmWwq+EOE6rLIp0Vs1xrzshl6vHv6awQ6BAi1HVk7kD0UwAQbCwm7F0x8llVZ2…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
  • mail: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1lucj7hpYGc9qu0spsTe43Hi5e7rKg9ai2XYCHMWm9i2sYo0icDSSMOCMIfRNIIBF0fFWOlEKGL/7JOIJR…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxACgjSZ6uI8jILJm3yh4eb+6uai1I/ss2XSrxsgHctr/qsmKzk56dtvMIeBaVBlfmGGUxOtIZOAuhbJpH5…
selectors probed

Certificate (current)

GeoTrust TLS RSA CA G1
from 2026-02-13 to 2026-08-14
Expires in 86 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.vzug.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
base-uri 'self'; block-all-mixed-content; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googletagmanager.com improve.vzug.com *.google-analytics.com *.googleapis.com tagmanager.google.com www.youtube.com *.ytimg.com player.vimeo.com login.vzug.com *.gigya.com *.gigya-api.cn *.cn1.sapcdm.cn connect.facebook.net *.doubleclick.net platform.getbring.com *.cookiebot.com ajax.cloudflare.com static.cloudflareinsights.com hit.uptrendsdata.com *.sentry.io browser-update.org trck.spoteffects.net snap.licdn.com s.pinimg.com analytics.twitter.com static.ads-twitter.com analytics.tiktok.com platform.twitter.com t.contentsquare.net app.contentsquare.com hcaptcha.com *.hcaptcha.com cdn.portal-backend.prod.qualibooth.com mktdplp102cdn.azureedge.net cxppusa1formui01cdnsa01-endpoint.azureedge.net *.usersnap.com cdn.us.heap-api.com cdn.eu.heap-api.com heapanalytics.com eu.heapanalytics.com ; worker-src 'self' blob:; object-src 'none'; frame-ancestors 'self';
strict-transport-security
max-age=31536000; includeSubDomains; preload

Linked from (4)