indexo.dev

xella.com

.com crawl

First seen 2026-04-26 · Last seen 2026-05-20 · ok HTTP/1.1 200 9704 ms crawled 2026-05-19

DE · 93.190.68.22 · AS47215 dogado GmbH

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
PIM
Language
en

Technology

CDN
Amazon CloudFront
Server
AmazonS3
Cookie consent
  • Usercentrics

Third-party hosts loaded (2)

  • privacy-proxy.usercentrics.eu×2
  • technik.xella.de×1

Registration

Registrar
CSC Corporate Domains, Inc.
Created
2002-05-23
Expires
2027-05-23 367 days left
Updated
2026-05-19
Name servers
  • ns1.netnames.net
  • ns2.netnames.net
  • ns5.netnames.net
  • ns6.netnames.net

DNS records live

NS
  • ns1.netnames.net
  • ns2.netnames.net
  • ns5.netnames.net
  • ns6.netnames.net
MX
  • 10 xella-com.mail.protection.outlook.com
TXT
  • zone-ownership-verification-398368471267c736707a27276fba5731da7ba439f317ecb05f9f423a864a4966
  • D-TRUST=5LVDFQVI9WN3JKGXMY7N56M
  • pexip-portal-domain-verification=74079c53-53bd-417d-9edf-0e4852e0f888
Verified for
  • Apple
  • Atlassian
  • Cisco
  • Google
  • Microsoft 365

Email authentication partial

SPF
v=spf1 include:_spf.retarus.com include:stspg-customer.com include:spf.protection.outlook.com include:servers.mcsv.net include:_spf.senders.scnem.com include:spf.afas.online include:spf.xella.com include:_spf.cmail.ondemand.com -all
strict (-all)
DMARC
v=DMARC1; p=none; rua=mailto:mailauth@xella.com; ruf=mailto:mailauth@xella.com;
policy: none (monitoring only)
DKIM
Show 6 DKIM selectors
  • default: v=DKIM1; k=rsa; s=email;p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqcb67/m5/Qos6NpXKxI6wz3kQ8aAXkOVPyqQRbRhgWybiWID8wIXFOMq6N2BFjV/HAgX0S…
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArJQdAcYIeUcxcRuulWxFi4jrZhVZpQSqqsc6zF+e0QOYjiiq6ChFPGRUTEM2M4OLL2Q0um0ac8USOK…
  • selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAucJLftxZvWNi4jO9iSe3F68y/13UIa15ZpWcnzTr0nd1g8fpjybawEzA2FETJHjPKyDj8tIq68vtJj…
  • k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyDV0VNSRvPeFymmwlU1qLKto57+ZyPZlItantGWJAvxhm1Nsc7G1aF4IPLABEeWlKIktwYOpf/bxHE3DyF…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0geZ8BkUFCxsSMPQ2zh8FJXDJS7l6OKj66xTug8LYuEHLMnwj2tqGEqLL5OfdgovfvDRsXKW5FfNmN1xRN…
selectors probed

Certificate (current)

E7
from 2026-04-05 to 2026-07-04
Expires in 44 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.xella.com/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
findings
  • CSP uses wildcard sources
  • missing frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-content-type-options
nosniff
content-security-policy
default-src *.clarity.ms c.bing.com; connect-src *.picturepark.com *.moin.ai *.herofil.es *.oribi.io *.docu.info *.google.com *.usercentrics.eu *.hotjar.com *.hotjar.io *.clarity.ms wss://*.hotjar.com wss://*.moin.ai *.analytics.google.com *.google-analytics.com *.salesmanago.pl backoffice.c2frwo0fak-xibmholdi1-d1-public.model-t.cc.commerce.ondemand.com backoffice.c2frwo0fak-xibmholdi1-p1-public.model-t.cc.commerce.ondemand.com backoffice.c2frwo0fak-xibmholdi1-s1-public.model-t.cc.commerce.ondemand.com backoffice.commerce.dev.xella.com backoffice.commerce.uat.xella.com backoffice.commerce.xella.com wss://directline.botframework.com directline.botframework.com maps.googleapis.com pixel.mathtag.com scnem3.com smartedit.commerce.dev.xella.com smartedit.commerce.uat.xella.com smartedit.commerce.xella.com static.mailerlite.com stats.g.doubleclick.net storefrontapi.commerce.dev.xella.com storefrontapi.commerce.uat.xella.com storefrontapi.commerce.xella.com t.leady.com ct.leady.com xellabot.a
strict-transport-security
max-age=31536000; includeSubdomains

Linked from (1)