No Security Risks Detected
This domain appears to be safe and secure
100%
Score
Disclaimer: This assessment is based on automated analysis of publicly available information. Results are for informational purposes only. For critical applications, consult security professionals.
Scan Information
Last checked:August 13, 2025 19:38:58
Target URL:https://eva-leon.de/
Scan Complete
Refresh page after 10 minutes
for updated results
Page Information
Target URL
https://eva-leon.de/
Page Title
Eva und Leon heiraten! - Am 29. August 2025 ist es endlich soweit! - Eva und Leon
Site FaviconStatus
Active
Host Information
Domain
eva-leon.de
Server
N/A
Country
Germany
IP Address
188.68.45.201
ASN Information
197540
netcup-AS
Technologies
HSTS
Security
SSL Certificate
HTTPS Enabled
Secure
Certificate Issuer
N/A
Valid From
2025-08-12 19:39:03
Valid Until
2026-08-13 19:39:03
Subject Name
eva-leon.de
Performance Statistics
20
Total Requests
4
Domains
4
IP Addresses
719.97 KB
Transfer Size
Content Size1.47 MB
HTTP Headers
Cache-Control
max-age=0, must-revalidate, no-store, private
Content-Encoding
zstd
Content-Security-Policy
report-uri /reporting/csp/enforce; report-to default; script-src 'self' 'unsafe-eval' 'strict-dynamic' https: 'unsafe-inline' 'sha256-1U4cYTw6oIJhB1gkiRBoLwURfKYOehpiHXMx/6WFag8=' 'sha256-mHsae9uONFUXDGMVhal3x8nqyrxdm3YVttLv7nvgD0s=' 'sha256-EnflY9f5mmlN9FJX3kvnCTrh0qXlWywb7IWxk/B+n5U=' 'nonce-UN2no5zEpD+q6OaZkrcXew=='; object-src 'none'; base-uri 'none'; frame-ancestors 'self' https://weddybird.com/; upgrade-insecure-requests
Content-Security-Policy-Report-Only
report-uri /reporting/csp/report; report-to default
Content-Type
text/html; charset=UTF-8
Cross-Origin-Opener-Policy
same-origin; report-to=default
Cross-Origin-Resource-Policy
same-origin
Date
Wed, 13 Aug 2025 19:39:04 GMT
Expires
Wed, 13 Aug 2025 19:39:04 GMT
Link
</client/weddybird/wedding-page.css?cb8ee058fc051ff03af5>; rel="preload"; as="style"
Referrer-Policy
same-origin
Report-To
{"group":"default","max_age":3600,"endpoints":[{"url":"\/reports"}]}
Reporting-Endpoints
default="/reports"
Strict-Transport-Security
max-age=31536000
Transfer-Encoding
chunked
Vary
Accept-Encoding
X-Content-Security-Policy
report-uri /reporting/csp/enforce; report-to default; script-src 'self' 'unsafe-eval' 'strict-dynamic' https: 'unsafe-inline' 'sha256-1U4cYTw6oIJhB1gkiRBoLwURfKYOehpiHXMx/6WFag8=' 'sha256-mHsae9uONFUXDGMVhal3x8nqyrxdm3YVttLv7nvgD0s=' 'sha256-EnflY9f5mmlN9FJX3kvnCTrh0qXlWywb7IWxk/B+n5U=' 'nonce-UN2no5zEpD+q6OaZkrcXew=='; object-src 'none'; base-uri 'none'; frame-ancestors 'self' https://weddybird.com/; upgrade-insecure-requests
X-Content-Security-Policy-Report-Only
report-uri /reporting/csp/report; report-to default
X-Content-Type-Options
nosniff
X-Frame-Options
SAMEORIGIN
X-Permitted-Cross-Domain-Policies
none
21 headers detected
Technology Stack Analysis
HSTS
Security
HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.
Website Cookies 3
samesite_strict_csrf_token
eva-leon.de
HttpOnly Secure Strict
Value
[samesite_strict_csrf_token redacted]
Expires:8/13/2026
login_test_cookie
eva-leon.de
HttpOnly Secure Strict
Value
the%20cookie%20monster%20was%20here
Expires:Session
locale
eva-leon.de
HttpOnly Secure Lax
Value
de
Expires:8/13/2026
External Links 0
Requested Domains 4
cdn.rollbar.com
Unknown Type
No category information available
cdn.wbsrv.de
Unknown Type
No category information available
eva-leon.de
Apex domain
No category information available
fonts.bunny.net
Unknown Type
No category information available