zupin.de

.de crawl

First seen 2026-04-25 · Last seen 2026-05-15 · ok HTTP/1.1 200 1011 ms crawled 2026-05-18

DE · 185.147.217.171 · AS30962 comtrance service GmbH

Reputation 87/100 weak security headers no dmarc policy

Classifying

HTML metadata

Title: ZUPIN Moto-Sport
Language: de

Technology

Server: Apache
CMS: Gatsby

Cookie consent

Iubenda

Third-party hosts loaded (2)

cdn.iubenda.com×1
matomo.dirt-labs.net×1

Social

Registration

Updated

2025-12-22

Name servers

ns5.kasserver.com.
ns6.kasserver.com.

DNS records live

NS

ns5.kasserver.com
ns6.kasserver.com

MX

0 zupin-de.mail.protection.outlook.com

Verified for

Microsoft 365

Email authentication weak

SPF

v=spf1 +ip4:185.147.217.171 +include:spf.protection.outlook.com -all

strict (-all)

DMARC

not published

DKIM

default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7diJXluXYwv99B2vL03ZaDpOTZ/xrCFEfaOZDsvDQAe77a4hYrUh3TPymnTbp595UovYEcaCmPAEaB…
selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCmRrYEjmUDACOqctuXmj2JWSA9Hupf2v6I2Ubje9YrlZ2vExqDRQnipLYlOinfQbRWOwDwOS8U3zL+x7OiOD…

selectors probed

Certificate (current)

R13

from 2026-03-25 to 2026-06-23

Expires in 34 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://zupin.de/

present

content-security-policy-report-only
x-frame-options
x-content-type-options

findings

missing HSTS
missing Content Security Policy
weak frame protection
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff
content-security-policy-report-only: font-src *.gstatic.com *.fontawesome.com data: 'self' 'unsafe-inline'; form-action secure.authorize.net test.authorize.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.cardinalcommerce.com *.paypal.com www.facebook.com connect.facebook.net graph.facebook.com business.facebook.com https://www.sandbox.paypal.com https://plumrocket.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com secure.authorize.net test.authorize.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com player.vimeo.com *.youtube.com https://www.google.com/recaptcha/ c.paypal.com checko

Links to (3)

Linked from (1)

gasgas-neumarkt.de×2