indexo.dev

zi.de

.de crawl

First seen 2026-04-14 · Last seen 2026-05-09 · ok HTTP/1.1 200 402 ms crawled 2026-05-07

DE · 80.158.59.88 · AS6878 T-Systems International GmbH

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Home | Zentralinstitut für die kassenärztliche Versorgung
Language
de
Generator
TYPO3 CMS
Canonical
https://www.zi.de/

Technology

Server
nginx

Social

Registration

Updated
2015-02-19
Name servers
  • docks20.rzone.de.
  • shades11.rzone.de.

DNS records live

NS
  • docks20.rzone.de
  • shades11.rzone.de
MX
  • 10 zi-de.mail.protection.outlook.com
TXT
Show 10 TXT records
  • openai-domain-verification=dv-JU61NnHvyy582kaN9zqI85GA
  • 202109202241071vilj4nx94ll0evtakfa64rntltjg612rz0p1fbrfkw20umhm2
  • apple-domain-verification=4RcCx5iz7GL7SUsG
  • 202109202247525re9nakhilfi6fzvyhqv3dmqb7aalzbjm50atpj6lb5av608hj
  • globalsign-domain-verification=2x4WPwznmyO-dJD0wj6lPcaiXQtrwAFlDTkzuEV-9H
  • google-site-verification=kSbxaKQOcoOfLbORqVUvYxqmqNVeidkw9COwU_-5500
  • atlassian-domain-verification=Px49ABpWRHzrR3ICRAeYunZWNHPrCtTwM8ak4ViQ5p43YTGr8tIpM3qHBs2T7RJS
  • MS=ms86792574
  • atlassian-sending-domain-verification=a9b655c6-eb3f-49fb-b26d-76068c32fe62
  • globalsign-domain-verification=sjXweMYAzRyZnVJ2Y5LVfrQMK5bZDpraj7C6WR3Ght

Email authentication partial

SPF
v=spf1 mx include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=none;
policy: none (monitoring only)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsvprZH4oPRst7b0y9el+KsnM4zQAfEy9/0cTBDf4mQHb8URhuI7/WZrgW0cQymmHdImGqk0+bH9d69…
selectors probed

Certificate (current)

GlobalSign RSA OV SSL CA 2018
from 2025-09-25 to 2026-10-27
Expires in 161 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 55/100 Checked live page: https://www.zi.de/

present
  • content-security-policy
  • x-frame-options
  • referrer-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing content type protection
  • missing Permissions Policy
Header values
referrer-policy
no-referrer, strict-origin-when-cross-origin
x-frame-options
sameorigin
content-security-policy
default-src 'self'; script-src 'self' 'nonce-3Gc6qwDGec79aCmd44L_OiNx7FKPq2eOGSWWr_SoYWqpXM3rjRhcng' data: https://*.openstreetmap.org 'unsafe-eval' 'report-sample'; style-src-attr 'unsafe-inline' 'report-sample'; img-src 'self' data: *.ytimg.com *.vimeocdn.com https://*.openstreetmap.org https://*.flockler.com https://*.flocklr.com https://*.cdninstagram.com https://*.licdn.com; base-uri 'self'; frame-src 'self' *.youtube-nocookie.com *.youtube.com *.vimeo.com https://newassets.hcaptcha.com https://www.youtube-nocookie.com https://export.api3.fusioncharts.com https://datawrapper.dwcdn.net https://*.zi.de; connect-src 'self' data: https://*.openstreetmap.org https://newassets.hcaptcha.com https://analytics.api.ziapp.de https://*.flockler.app; object-src 'none'; font-src 'self' data: application/font-woff; script-src-elem 'self' 'nonce-3Gc6qwDGec79aCmd44L_OiNx7FKPq2eOGSWWr_SoYWqpXM3rjRhcng' data: https://*.openstreetmap.org 'sha256-bYJFC2Ut+rssSKNk06BT+vJInO1VrHnEkT+Y4V64aoc=' 'sha256-U

Links to (7)

Linked from (9)