indexo.dev

wba.or.at

.at crawl

First seen 2026-05-29 · Last seen 2026-05-31 · ok HTTP/1.1 200 369 ms crawled 2026-05-31

DE · 185.15.193.67 · AS15817 Mittwald CM Service GmbH & Co. KG

Reputation 100/100

Classifying

HTML metadata

Title
wba - zertifiziert Sie als Erwachsenenbildner/in!
Language
de
Canonical
https://wba.or.at/de/

Open Graph

url
https://wba.or.at/de/
title
wba - zertifiziert Sie als Erwachsenenbildner/in!
author
wba
publisher
wukonig.com
site name
wba

Technology

Server
Apache
Stack
PHP
Analytics
  • Google Analytics
  • Google Tag Manager
  • Hotjar
Social widgets
  • YouTube Embed
Third-party hosts loaded (10)
  • www.googletagmanager.com×2
  • ajax.googleapis.com×1
  • cdn.mouseflow.com×1
  • cdnjs.cloudflare.com×1
  • cloud.ccm19.de×1
  • vars.hotjar.com×1
  • www.google-analytics.com×1
  • www.google.com×1
  • www.youtube-nocookie.com×1
  • www.youtube.com×1

Social

Contact

Phone
Address
Walcherstr. 6, Unit 3, 4. OG, 1020 Wien, E-Mail:wba@bifeb.atTel.:+43(0)1/5242000

DNS records live

NS
  • ns1.hoax.at
  • ns7.hoax.at
MX
  • 10 mx01.hornetsecurity.com
  • 20 mx02.hornetsecurity.com
  • 30 mx03.hornetsecurity.com
  • 40 mx04.hornetsecurity.com
Verified for
  • Google
  • Microsoft 365

Email authentication strong

SPF
v=spf1 +ip4:91.133.68.136/29 include:spf.hornetsecurity.com include:_spf.sendnode.com include:spf.emailsecurity.at include:spf.nl2go.com include:agenturserver.de -all
strict (-all)
DMARC
v=DMARC1; p=quarantine
policy: quarantine
DKIM
no key found at common selectors

Certificate (current)

R12
from 2026-04-02 to 2026-07-01
Expires in 28 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://wba.or.at/de/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-content-type-options
nosniff
content-security-policy
media-src *; style-src 'self' 'unsafe-inline' fonts.gstatic.com fonts.googleapis.com cloud.ccm19.de; script-src 'self' 'unsafe-eval' 'unsafe-inline' cloud.ccm19.de html5shim.googlecode.com www.googletagmanager.com www.google-analytics.com static.newsletter2go.com cdn.appointmind.net;
strict-transport-security
max-age=63072000; includeSubDomains; preload

Links to (4)

Linked from (1)