indexo.dev

westbahn.at

.at crawl

First seen 2026-05-23 · Last seen 2026-05-30 · ok HTTP/1.1 200 706 ms crawled 2026-05-28

US · 172.66.132.117 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Westbahn Ticket kaufen | Züge nach Österreich & Deutschland
Description
Jetzt Westbahn-Ticket kaufen: günstig und ohne Umstieg mit dem Zug von Wien nach Linz, Salzburg, Innsbruck, Bregenz, Lindau, München & Stuttgart reisen.
Language
de-AT
Canonical
https://westbahn.at/
Translations
  • de ×2
  • en ×2

Open Graph

url
https://westbahn.at/
title
Westbahn | Tickets & Angebote | Fahrplan
description
Mit der Westbahn schnell und günstig nach Wien, Linz, Salzburg, Innsbruck, Bregenz, München oder Stuttgart.

Technology

CDN
Cloudflare
Cookie consent
  • Cookiebot

Third-party hosts loaded (2)

  • westbahn.de×2
  • consent.cookiebot.com×1

Social

Contact

Phone
Address
Europaplatz 3/1, 1150, Wien, AT

DNS records live

NS
  • ns1.internex.at
  • ns2.internex.at
  • ns3.internex.at
  • ns4.internex.at
MX
  • 0 westbahn-at.mail.protection.outlook.com
Verified for
  • Apple
  • Atlassian
  • Google
  • Meta
  • Microsoft 365

Email authentication strong

SPF
v=spf1 ip4:91.118.87.20 ip4:5.132.190.207 ip4:62.99.211.102 a:er-mail.erecruiter.net a:mx01.rexx-systems.de include:spf.protection.outlook.com include:_spf.salesforce.com -all
strict (-all)
DMARC
v=DMARC1; p=quarantine; rua=mailto:mdgakoo0@ag.eu.dmarcian.com; ruf=mailto:mdgakoo0@fr.eu.dmarcian.com;
policy: quarantine
DKIM
  • default: v=DKIM1; k=rsa; h=sha256; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwSd+0BFPhynUXUJfv6egPtJk1BY5PTscCtP1vbOpEaEvk7uUxJTsyZJM1gjMWzs/VTQ8…
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC6WVJvMR8LBzDWGhiX9hXJykSB6+vbk2EgEiesQxq7D7paSvVR7O7waTnEguBGMwAve320svZ+OX6PupvLK4…
  • selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCV9+3jhyi+pvqviDtD8Zp+4Uj3mgvsKuMfb2rwbDVbCJdmtYE8Jfr2tl5DEoBtwxP1ubALYW3p+4QoS+7EkF…
selectors probed

Certificate (current)

RapidSSL TLS RSA CA G1
from 2025-09-23 to 2026-10-23
Expires in 144 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://westbahn.at/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
  • cross-origin-embedder-policy
  • cross-origin-resource-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
accelerometer=*, ambient-light-sensor=*, autoplay=*, battery=*, camera=*, cross-origin-isolated=*, display-capture=*, document-domain=*, encrypted-media=*, execution-while-not-rendered=*, execution-while-out-of-viewport=*, fullscreen=*, geolocation=*, gyroscope=*, keyboard-map=*, magnetometer=*, microphone=*, midi=*, navigation-override=*, payment=*, picture-in-picture=*, publickey-credentials-get=*, screen-wake-lock=*, sync-xhr=*, usb=*, web-share=*, xr-spatial-tracking=*
x-content-type-options
nosniff
content-security-policy
default-src 'self' westbahn.at *.westbahn.at 'unsafe-inline' 'wasm-unsafe-eval' data: https: https://*.hotjar.com https://*.hotjar.io wss://*.hotjar.com wss://io.fusedeck.net ;
strict-transport-security
max-age=31536000; includeSubDomains; preload
cross-origin-opener-policy
same-origin-allow-popups
cross-origin-embedder-policy
unsafe-none
cross-origin-resource-policy
same-site

Links to (4)

Linked from (6)