xl2.de

HTML metadata

Technology

CDN

Vercel

CMS

Next.js

Cookie consent

• Cookiebot

Third-party hosts loaded (2)

• a.storyblok.com×14
• consent.cookiebot.com×1

Social

• linkedin
• instagram
• tiktok

Registration

Updated

2026-02-13

Name servers

• dns1.p03.nsone.net.
• dns2.p03.nsone.net.
• dns3.p03.nsone.net.
• dns4.p03.nsone.net.

DNS records live

NS

• dns1.p03.nsone.net
• dns2.p03.nsone.net
• dns3.p03.nsone.net
• dns4.p03.nsone.net

MX

• 5 mx1.hc674-87.eu.iphmx.com
• 5 mx1.hc756-17.eu.iphmx.com
• 5 mx2.hc674-87.eu.iphmx.com
• 5 mx2.hc756-17.eu.iphmx.com

TXT

• MS=ms16218609
• miro-verification=f3e931267ff75ab51c5c257f74d280ffa7905d7c
• google-site-verification=XyCCaZ7vMifdjGOCXNJ-kJsXmixth6lc0MIKFlYO-UY

Email authentication partial

SPF

v=spf1 exists:%{i}.spf.hc674-87.eu.iphmx.com exists:%{i}.spf.hc756-17.eu.iphmx.com exists:%{i}.spf.hc2065-58.eu.iphmx.com include:_u.xl2.de._spf.smart.ondmarc.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none; pct=100; sp=none; rua=mailto:52d9f001@inbox.eu.redsift.cloud,mailto:rua.xl2de@xl2.de; ruf=mailto:52d9f001@inbox.eu.redsift.cloud,mailto:ruf.xl2de@xl2.de; adkim=r; aspf=r; fo=0:1:d:s; rf=afrf; ri=3600

policy: none (monitoring only) · sp=none

DKIM

no key found at common selectors

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 60/100 Checked live page: https://www.xl2.de/

present

• strict-transport-security
• x-content-type-options

findings

• missing Content Security Policy
• missing frame protection
• missing Referrer Policy
• missing Permissions Policy

Links to (5)

• instagram.com×2
• linkedin.com×2
• softgarden.de×2
• softgarden.io×2
• tiktok.com×2

Linked from (1)

• abat.de×2