zalando.es

HTML metadata

Technology

CDN

Akamai

Server

rendering-engine

Third-party hosts loaded (5)

• mosaic01.ztat.net×20
• img01.ztat.net×7
• mosaic02.ztat.net×5
• mosaic03.ztat.net×2
• js-de.sentry-cdn.com×1

Social

• facebook
• instagram
• pinterest
• tiktok

DNS records live

NS

• ns-1148.awsdns-15.org
• ns-1864.awsdns-41.co.uk
• ns-508.awsdns-63.com
• ns-761.awsdns-31.net

MX

• 1 aspmx.l.google.com
• 10 alt3.aspmx.l.google.com
• 10 alt4.aspmx.l.google.com
• 5 alt1.aspmx.l.google.com
• 5 alt2.aspmx.l.google.com

TXT

Show 8 TXT records

• facebook-domain-verification=wbno9aaeiraeutcyc292lz6nyh8quv
• google-site-verification=BkikEJSizDVS97Nn4XyLsBkd6UBNs_Z_HKb_vuXWCNs
• google-site-verification=J2ycjqXo5DNhrUacm4SyAnVME2jqncicVnKgh_BkTxU
• google-site-verification=_COQixctTFCKblDVLqan-psV4rbdoo11Pcsb0Q5lY74
• google-site-verification=oTDvEO4zdWEJ0RpUHnbYAxCXYdTYQbocO3DJ2dUkMTg
• openai-domain-verification=dv-rCZYF1BY7RUxDcDYkTYqAs3a
• MS=ms71420778
• docusign=393d1e4b-0dc7-4ed1-bd9a-cf2e1753aebb

Email authentication partial

SPF

v=spf1 include:_spf.google.com include:spf.protection.outlook.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none; rua=mailto:dmarc_reports@zalando.es; ruf=mailto:dmarc_auth@zalando.es;

policy: none (monitoring only)

DKIM

• google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAljKtqqCitWBOZKrI1i3itUqJcndq4T+BM30FJvNJn+Vhym5++kPA7qwR9xCKVhsuimNrbB3a5sn/s2…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.zalando.es/

present

• strict-transport-security
• content-security-policy
• x-frame-options

findings

• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (8)

• zalando.com×10
• apple.com×4
• google.com×4
• facebook.com×4
• aboutyou.es×4
• pinterest.com×4
• tiktok.com×4
• instagram.com×4

Linked from (2)

• ouzhou123.com×3
• zalando-prive.es×2