weltvogelpark.de

HTML metadata

Technology

Cookie consent

• OneTrust

Third-party hosts loaded (2)

• cdn.cookielaw.org×2
• www.google.com×1

Social

• facebook
• instagram
• youtube

Registration

Updated

2024-01-26

Name servers

• ns01.parquesreunidos.com.
• ns02.parquesreunidos.com.
• ns03.parquesreunidos.com.

DNS records live

NS

• ns01.parquesreunidos.com
• ns02.parquesreunidos.com
• ns03.parquesreunidos.com

MX

• 10 mxa-0078a701.gslb.pphosted.com
• 10 mxb-0078a701.gslb.pphosted.com

TXT

• adobe-sign-verification=f4d360de316f5047505f997361ab

Verified for

• Atlassian
• Microsoft 365

Email authentication strong

SPF

v=spf1 include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; sp=quarantine; fo=1; adkim=r; aspf=r; pct=100; rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com;

policy: quarantine · sp=quarantine

DKIM

• selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApQ5A6vimHrbIMqd5eROdWg8HSBZGBfAwIVB8UJ05Z76Z32D4jHL7zkxgnETYY/Lu1yNF28UUGKY9k9…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.weltvogelpark.de/

present

• strict-transport-security
• content-security-policy
• x-frame-options
• x-content-type-options

findings

• CSP allows unsafe inline scripts/styles
• CSP uses wildcard sources
• missing Referrer Policy
• missing Permissions Policy

Links to (8)

• facebook.com×2
• instagram.com×2
• movieparkgermany.de×2
• slagharen.com×2
• ticketfritz.de×2
• travelcircus.de×2
• tropical-islands.de×2
• youtube.com×2

Linked from (3)

• movieparkgermany.de×2
• tropical-islands.de×2
• buchholz.de×2