indexo.dev

widmannbewegt.de

.de crawl

First seen 2026-04-20 · Last seen 2026-05-17 · ok HTTP/1.1 200 421 ms crawled 2026-05-13

DE · 85.215.92.226 · AS6724 Strato GmbH

Reputation 94/100 dmarc monitor-only

sector automotive type homepage

HTML metadata

Title
Autohaus Widmann: Mercedes-Benz, AMG, smart & VW
Description
Neu- & Gebrauchtwagen mit Top-Services ✓ 14 Standorte ✓ 4 Bundesländer ✓ 8 Marken ➤Jetzt Wunschfahrzeug finden oder Servicetermin buchen!
Language
de

Open Graph

url
https://www.widmannbewegt.de
title
Autohaus Widmann: Mercedes-Benz, AMG, smart & VW
locale
de_DE
site name
Widmann
description
Neu- & Gebrauchtwagen mit Top-Services ✓ 14 Standorte ✓ 4 Bundesländer ✓ 8 Marken ➤Jetzt Wunschfahrzeug finden oder Servicetermin buchen!

Technology

Server
nginx
CMS
Next.js
Analytics
  • Google Tag Manager
Cookie consent
  • Cookiebot

Third-party hosts loaded (3)

  • consent.cookiebot.com×1
  • tdf01893f.emailsys1a.net×1
  • www.googletagmanager.com×1

Social

Contact

Email
Phone

Registration

Updated
2008-04-24
Name servers
  • ns1.sdt.net.
  • ns2.sdt.net.

DNS records live

NS
  • ns1.sdt.net
  • ns2.sdt.net
MX
  • 10 mail.widmannbewegt.de
TXT
Show 6 TXT records
  • MS=ms32992464
  • ms32992464.msv1.invalid.
  • FAF4E86B02DCF0B0749A738B85A298ACD7B4FE8B.msv1.invalid
  • apple-domain-verification=9XddSdNb9aphNKLi
  • MS=FAF4E86B02DCF0B0749A738B85A298ACD7B4FE8B
  • google-site-verification=y5cmn6gdZ2hYxCl9pd1JRcPrlE6sM-zjfvoq5A8xa70

Email authentication partial

SPF
v=spf1 a mx include:_spf.rexx-suite.com include:inxserver.com -all
strict (-all)
DMARC
v=DMARC1; p=none;
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

GandiCert
from 2025-05-23 to 2026-06-24
Expires in 36 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://widmannbewegt.de/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
camera=(), microphone=(), geolocation=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://autohauskenner.de https://apps.autohauskenner.de https://tdf01893f.emailsys1a.net https://zubehoer-navigator.de https://consent.cookiebot.com https://consentcdn.cookiebot.com https://www.autouncle.de https://assets.autouncle.com https://evt.autouncle.com https://connect.facebook.net https://www.googletagmanager.com https://www.google.com https://hpm.servicelister.de https://www.gstatic.com; style-src 'self' 'unsafe-inline' https://hpm.servicelister.de https://zubehoer-navigator.de https://assets.autouncle.com https://c.emailsys1a.net; img-src 'self' blob: http://localhost:* data: https: http:; font-src 'self' data: https://assets.autouncle.com https://hpm.servicelister.de https://*.emailsys1a.net; connect-src 'self' blob: https://www.widmannbewegt.de wss://www.widmannbewegt.de https://zubehoer-navigator.de https://api.hpm.itt-dev.de http://localhost:* http://127.0.0.1:* https://region1.googleanalytics.com https
strict-transport-security
max-age=63072000; includeSubDomains; preload

Links to (11)

Linked from (5)