{ "schema": "https://saferpage.de/schemas/technology-detection.v1", "generated_at": "2026-06-10T09:46:23+00:00", "domain": "dhbw.de", "available": true, "scan": { "id": "f0f96c95-fd5c-4bc5-ad1e-07322a2cabc9", "checked_at": "2026-06-10 06:05:09.773542+02" }, "summary": "dhbw.de: 7 sichtbare Technik-/Anbietersignale, 1 mit hoher Datenschutzrelevanz, 1 CMS-/Shop-Hinweis(e).", "metrics": { "technology_count": 7, "high_privacy_relevance_count": 1, "cms_or_shop_count": 1, "external_script_count": 1, "request_count": 38, "third_party_domain_count": 3, "infrastructure_finding_count": 0 }, "signals": { "server_header": "Apache", "generator": "TYPO3 CMS", "x_powered_by": "", "asset_hosts": [ "consent.cookiefirst.com", "oss.maxcdn.com", "www.dhbw.de" ], "external_scripts": [ "https://consent.cookiefirst.com/sites/dhbw.de-5356de64-c2ca-42c3-a6f3-a0027ae4d7f9/consent.js" ], "tls_version": "TLSv1.3", "certificate_issuer": "GEANT TLS RSA 1", "renderer": "playwright-chromium" }, "category_counts": { "Analytics/Werbung": 1, "other": 2, "CMS": 1, "Server": 2, "Hosting/CDN": 1 }, "technologies": [ { "id": "provider_matomo", "name": "Matomo", "category": "analytics", "category_label": "Analytics/Werbung", "confidence": "browser", "risk_score": 80, "privacy_relevance": "hoch", "evidence": [ "matomo.dhbw.de", "2 Request(s)" ], "source": "browser_analysis" }, { "id": "provider_consent.cookiefirst.com", "name": "consent.cookiefirst.com", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 58, "privacy_relevance": "mittel", "evidence": [ "consent.cookiefirst.com", "9 Request(s)" ], "source": "browser_analysis" }, { "id": "typo3", "name": "TYPO3", "category": "cms", "category_label": "CMS", "confidence": "high", "risk_score": 52, "privacy_relevance": "mittel", "evidence": [ "Meta generator: TYPO3 CMS", "Signal: typo3conf/" ], "source": "technology_analysis" }, { "id": "apache", "name": "Apache", "category": "server", "category_label": "Server", "confidence": "medium", "risk_score": 42, "privacy_relevance": "niedrig", "evidence": [ "Server-Header: Apache" ], "source": "technology_analysis" }, { "id": "server_header", "name": "Apache", "category": "server", "category_label": "Server", "confidence": "medium", "risk_score": 42, "privacy_relevance": "niedrig", "evidence": [ "Server-Header: Apache" ], "source": "technology_signals" }, { "id": "cloudflare", "name": "Cloudflare", "category": "hosting_cdn", "category_label": "Hosting/CDN", "confidence": "high", "risk_score": 42, "privacy_relevance": "niedrig", "evidence": [ "Signal: cloudflare" ], "source": "technology_analysis" }, { "id": "provider_edge.cookiefirst.com", "name": "edge.cookiefirst.com", "category": "other", "category_label": "other", "confidence": "browser", "risk_score": 35, "privacy_relevance": "niedrig", "evidence": [ "edge.cookiefirst.com", "2 Request(s)" ], "source": "browser_analysis" } ], "operator_actions": [ { "id": "action_provider_matomo", "technology": "Matomo", "priority": "hoch", "owner": "Marketing/IT/Datenschutz", "action": "Tracking-, Werbe- und Tag-Manager-Dienste bis zur aktiven Einwilligung blockieren und in Consent, Datenschutzhinweis und Anbieterregister erklären.", "guide_url": "https://saferpage.de/consent/dhbw.de" }, { "id": "action_provider_consent.cookiefirst.com", "technology": "consent.cookiefirst.com", "priority": "mittel", "owner": "Website-Betrieb/Datenschutz", "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.", "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog" }, { "id": "action_typo3", "technology": "TYPO3", "priority": "mittel", "owner": "Webbetrieb/IT", "action": "CMS, Themes, Plugins und sichtbare Versionshinweise aktualisieren, unnötige Plugins entfernen und Re-Scan nach Deployment ausführen.", "guide_url": "https://saferpage.de/guides/sichtbare-versionen-und-cves-beheben" }, { "id": "action_apache", "technology": "Apache", "priority": "mittel", "owner": "IT/Security/Vendor Owner", "action": "Hosting/CDN, TLS, E-Mail-Schutz, Security-Header, CAA/DMARC und Anbieterrolle mit AVV/DPA/TOM-Nachweis prüfen.", "guide_url": "https://saferpage.de/anbieter/dhbw.de" }, { "id": "action_server_header", "technology": "Apache", "priority": "mittel", "owner": "IT/Security/Vendor Owner", "action": "Hosting/CDN, TLS, E-Mail-Schutz, Security-Header, CAA/DMARC und Anbieterrolle mit AVV/DPA/TOM-Nachweis prüfen.", "guide_url": "https://saferpage.de/anbieter/dhbw.de" }, { "id": "action_cloudflare", "technology": "Cloudflare", "priority": "mittel", "owner": "IT/Security/Vendor Owner", "action": "Hosting/CDN, TLS, E-Mail-Schutz, Security-Header, CAA/DMARC und Anbieterrolle mit AVV/DPA/TOM-Nachweis prüfen.", "guide_url": "https://saferpage.de/anbieter/dhbw.de" }, { "id": "action_provider_edge.cookiefirst.com", "technology": "edge.cookiefirst.com", "priority": "mittel", "owner": "Website-Betrieb/Datenschutz", "action": "Techniksignal fachlich einordnen, Zweck, Anbieter, Datenarten und notwendige Nachweise ergänzen.", "guide_url": "https://saferpage.de/guides/datenschutz-webseiten-pruefkatalog" } ], "cms_playbooks": [ { "id": "typo3", "platform": "TYPO3", "summary": "TYPO3-Extensions, Sitepackage, Fluid-Templates, Consent-Extension und Caching müssen zusammen geprüft werden.", "steps": [ "TYPO3 Core und Extensions gemäß Wartungsstatus aktualisieren; Composer-/Extension-Lockfile sichern.", "Sitepackage und Fluid-Templates nach externen Fonts, Maps, Videos, Analytics und Tag-Manager-Snippets durchsuchen.", "Consent-Extension so konfigurieren, dass externe Skripte und Iframes erst nach passender Einwilligung laden.", "Security-Header und TLS/HSTS auf Webserver-/Proxy-Ebene testen; TYPO3-Caches nach Änderung leeren." ], "acceptance": [ "Extension-Liste und Wartungsstatus dokumentiert.", "Pflichtseiten werden im Seiteninventar gefunden.", "Consent-Zustände sind im Re-Scan stabil." ], "owner": "Webbetrieb/IT/Datenschutz", "guide_url": "https://saferpage.de/guides/cms-plugin-patchstand-nachweisen", "rescan_url": "https://saferpage.de/?url=dhbw.de" } ], "infrastructure": { "risk_level": "low", "positive_signals": [ "Moderne TLS-Version aktiv: TLSv1.3.", "HSTS ist aktiv.", "DMARC ist für die Domain vorhanden.", "CAA-Records begrenzen Zertifikatsaussteller." ], "findings": [] }, "links": { "technology_center": "https://saferpage.de/technik/dhbw.de", "json": "https://saferpage.de/technik/dhbw.de/export", "csv": "https://saferpage.de/technik/dhbw.de/export-csv", "markdown": "https://saferpage.de/technik/dhbw.de/stack-md", "report": "https://saferpage.de/dhbw.de", "vendors": "https://saferpage.de/anbieter/dhbw.de", "consent": "https://saferpage.de/consent/dhbw.de", "findings": "https://saferpage.de/befunde/dhbw.de", "evidence": "https://saferpage.de/nachweise/dhbw.de" }, "disclaimer": "Technik-Erkennung ist passiv: SaferPage wertet sichtbare Header, HTML-, Script-, Asset- und Browserkontakte aus. Nicht sichtbare Servertechnik, interne Plugins und Logins werden nicht behauptet." }