weller-tools.com

.com crawl

First seen 2026-04-21 · Last seen 2026-05-17 · ok HTTP/1.1 200 2832 ms crawled 2026-05-14

DE · 78.46.177.200 · AS24940 Hetzner Online GmbH

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title

Homepage | Weller Tools

Description

Explore Weller soldering tools equipment and precision tools for professionals.

Language

Generator

Drupal 11 (https://www.drupal.org)

Canonical

https://www.weller-tools.com/eu/gb

Translations

Open Graph

url: https://www.weller-tools.com/eu/gb/homepage
title: Homepage
site name: Weller Tools
description: Homepage

Technology

Server: nginx
CMS: Drupal

Analytics

Google Tag Manager

Cookie consent

Usercentrics

Third-party hosts loaded (6)

app.usercentrics.eu×3
privacy-proxy.usercentrics.eu×3
api.usercentrics.eu×1
js.hs-scripts.com×1
js.hsforms.net×1
www.googletagmanager.com×1

Social

Registration

Registrar

Hetzner Online GmbH

Created

2010-11-17

Expires

2026-11-17 182 days left

Updated

2025-11-25

Name servers

ns.second-ns.com
ns1.your-server.de
ns3.second-ns.de

DNS records live

NS

ns.second-ns.com
ns1.your-server.de
ns3.second-ns.de

MX

1 wellertools-com01e.mail.protection.outlook.com

TXT

Show 7 TXT records

adobe-idp-site-verification=cde2872691524c90fc4373818dc6d02617794f9e633c9af7434c07951728c3d3
cisco-ci-domain-verification=3642fca1f67ab0563cfeac2cc1ca91b8f4923b75dc3f7fddd2a2e5352235c7eb
google-site-verification=4Un7ZDGc1tu0S-ncsIzAzP0g-LedXzmyvdVV8pU9mT8
google-site-verification=eETivALgOykEzplVoX9deSH1Y3Rf3uafIaix7Wdg3uI
webexdomainverification.JRNX=fa5f675e-92ba-42f3-9433-7393522e46c2
MS=ms30773734
MS=ms48153408

Email authentication partial

SPF: v=spf1 include:spf.protection.outlook.com include:spf.mandrillapp.com ~all
softfail (~all)
DMARC: v=DMARC1; p=none;
policy: none (monitoring only)
DKIM: no key found at common selectors

Certificate (current)

Thawte TLS RSA CA G1

from 2026-02-16 to 2027-02-27

Expires in 284 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.weller-tools.com/eu/gb

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self' *.google.com *.google-analytics.com *.doubleclick.net cookiehub.net *.cookiehub.net *.facebook.com *.facebook.net polyfill.io *.newrelic.com *.linkedin.com *.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' cookiehub.net *.cookiehub.net *.google.com *.googletagmanager.com *.google-analytics.com *.googleadservices.com *.licdn.com *.facebook.net *.doubleclick.net polyfill.io *.facebook.com *.facebook.net *.plyr.io *.vimeo.com *.youtube.com *.hsforms.net *.hsforms.com js.hs-scripts.com js.hs-banner.com js.hs-analytics.net js.hscollectedforms.net unpkg.com *.usercentrics.eu *.newrelic.com *.linkedin.com *.googleapis.com ki-assistent.weller-tools.com *.holygrail.app; style-src 'self' 'unsafe-inline' cookiehub.net *.cookiehub.net *.facebook.com *.facebook.net *.plyr.io *.vimeo.com *.youtube.com projects.codeaware.at *.linkedin.com *.googleapis.com ki-assistent.weller-tools.com; img-src * 'self' data: https:; frame-src 'self' *.youtube.com *.youtu.be *.youtub
strict-transport-security: max-age=31536000; includeSubDomains