indexo.dev

belfius.be

.be crawl

First seen 2026-05-12 · Last seen 2026-05-18 · ok HTTP/1.1 200 2291 ms crawled 2026-05-18

BE · 141.96.1.13 · AS25367 Proximus Luxembourg S.A.

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
Bank & verzekeringen voor particulieren – Belfius
Description
Ontdek een bank-verzekeraar dicht bij u: rekeningen, kaarten, kredieten, sparen en verzekeringen. Beheer alles online of in kantoor, volgens uw behoeften.
Language
nl-BE
Canonical
https://www.belfius.be/site/retail/nl
Translations
  • fr-be
  • nl-be

Open Graph

title
Bank & verzekeringen voor particulieren – Belfius
description
Ontdek een bank-verzekeraar dicht bij u: rekeningen, kaarten, kredieten, sparen en verzekeringen. Beheer alles online of in kantoor, volgens uw behoeften.

Technology

CDN
Azure Front Door
CMS
Next.js

DNS records live

NS
  • ns1.belfius.com
  • ns2.belfius.com
MX
  • 10 mail.belfius.be
TXT
Show 33 TXT records
  • _brjo6s0l2b8kmxh9s0dcfaytm23t4nj
  • QuoVadis=08faf705-a7f0-48d6-8886-401441d94d94
  • QuoVadis=536e02ed-7221-4972-8511-9919aed61daf
  • _globalsign-domain-verification=YhwEbv70TlLfHv_syA4fVw5ABAqZ76Q5E7su0PGnAr
  • globalsign-domain-verification=-DBRuFg_Z8b5iVtCMiGxSE1B3L-jH2H9PrbdkjaP7X
  • globalsign-domain-verification=s1T78T2LoUhvaqLnytrtkikYkuNrzYpX7XdXKiH867
  • paloaltonetworks-site-verification=5e7434416082b43a7139d710d5182413527b2be22c6d02e6444dbfee46c891fe
  • 3wv276b97g1lvphr0hjnvpxs9llyldww
  • 0fllzymzmpjzhhhp4lkb31sn4jz8m4q2
  • dw3f352yw2n8csnsk1qzbfmf7z9hsqk5
  • onetrust-domain-verification=7fe7901e64e44dd0b8ceadf80949a27b
  • google-site-verification=Corl1Gn3t9BY8JXOEFPfD8lpvW8zc1URrORicAqAw58
  • have-i-been-pwned-verification=6419316d3960281afb9577ab54216dbe
  • _h35qujgl8as6pq3yn7tjasfa3vzuruj
  • google-site-verification=wL5FW0fwzsZmOSPg8jWi1zMCH5vJ72_PK8SPVFMEINs
  • apple-domain-verification=rSgTvU8ijCgmkemW
  • google-site-verification=P2c9SjVf51Be-jhsHe8Pe8dw3ZlLXKE9BNHDjvue81c
  • QuoVadis=493aaff4-9d19-4f82-a615-2c9b677ee82a
  • google-site-verification=21mOJj1BOtnPFeNsCEf5sqZPptcmiXW9SH-BcVD8Avg
  • onetrust-domain-verification=1c6d2dbcf44c4dbebea19ebbeea126ab
  • adobe-idp-site-verification=5f542e21-dcba-45b4-9c19-ee31f6d24c0d
  • miro-verification=fed5e6f4926ba0cefa65c1a512f9f795d586d134
  • _4qnxkc2agwi4sgbbtl071b7m4xebzkx
  • cm.com-domain-verification=019744a8-fcd4-7407-91f7-1adaa66be2bf
  • xr8lx9clpm0z4kqtfxksp0jrl3msxwjd
  • google-site-verification=BzqG9kLBBevJVo5LKuYu-RZLdGpD1QJEBUb4CpVg5xE
  • google-gws-recovery-domain-verification=54609390
  • successfactors-site-verification=YjA2NjUyZTRjNzRkODk4Yzg0MGRjNzYyZjViNTYxNzU3MGVjNWU5M2FjNjcwMmEyMDU5NDJkYjBjZDAwYzA1OQ==
  • google-site-verification=DsrslkjH2d7nfX4o6fntIkSlTOJsisLNqCUmHkIhl5E
  • MS=ms16040564
  • google-gws-recovery-domain-verification=55479146
  • r0by0m7r6p47ngsgpxbrc24zrt2l49gq
  • tr76hh1j7xy3l8kw41smr8v5vqz5t25w

Email authentication strong

SPF
v=spf1 ip4:141.96.0.129 ip4:212.63.232.3 ip4:31.193.177.229 ip4:31.193.177.236 ip4:62.72.101.114 ip4:188.64.79.0/24 ip4:188.93.102.215 ip4:79.174.133.61 ip4:185.18.8.253 ip4:85.158.111.74 include:spf.mandrillapp.com include:servers.mcsv.net include:spf.mailjet.com include:spf.flexmail.eu include:sendgrid.net include:_spf.cmail.ondemand.com -all
strict (-all)
DMARC
v=DMARC1; p=reject; sp=none; pct=100; fo=1; rua=mailto:report@belfius.be; ruf=mailto:report@belfius.be
policy: reject (enforced) · sp=none
DKIM
no key found at common selectors

Certificate (current)

DigiCert EV RSA CA G2
from 2025-06-12 to 2026-07-01
Expires in 42 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.belfius.be/site/retail/nl

present
  • content-security-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://*.belfius.be https://*.digital.belfius.be; style-src 'self' 'unsafe-inline' https://*.belfius.be https://csi.gstatic.com/; img-src 'self' data: blob: https://*.belfius.be https://csi.gstatic.com/; font-src 'self' https://*.belfius.be; connect-src 'self' https://cookies-data.onetrust.io https://*.belfius.be wss: https://privacyportal-eu.onetrust.com; frame-src https://*.belfius.be; frame-ancestors 'self'; object-src 'none'; media-src 'self' https://cdne-belfius-mam-prd-001.azureedge.net; base-uri 'self'; form-action 'self'; upgrade-insecure-requests; block-all-mixed-content; report-uri https://belfius.report-uri.io/r/default/csp/reportOnly;

Linked from (2)