indexo.dev

beterwonen.nl

.nl crawl

First seen 2026-06-01 · Last seen 2026-06-01 · ok HTTP/1.1 200 674 ms crawled 2026-06-01

NL · 40.68.188.93 · AS8075 Microsoft Corporation

Reputation 100/100

Classifying

HTML metadata

Title
Home | Beter Wonen
Description
Website
Language
nl

Technology

jQuery
3.6.0
Stack
ASP.NET
Fonts
  • Google Fonts
Social widgets
  • YouTube Embed

Third-party hosts loaded (3)

  • cdn-eu.readspeaker.com×1
  • fonts.googleapis.com×1
  • www.youtube.com×1

Social

DNS records live

NS
  • nsauth1.bit.nl
  • nsauth2.bit.nl
  • nsauth3.bit.org
MX
  • 10 beterwonen-nl.mail.protection.outlook.com
TXT
  • amazonses:QzWiqEATRl+XsuVMf5TlHSjMOW7geu7RuO3K9K2SMf0=
  • DomainVerification=Z92B38L27M6S2OW85UFC7NEP59O8YQKDTS565YZSPW4NMV771CCDJCTR40FTHS55
  • _64jls386jhrgy14gcs471cxlm9iu3sp
Verified for
  • Microsoft 365

Email authentication strong

SPF
v=spf1 a ip4:62.166.51.117 ip4:203.55.21.53 ip4:185.150.157.75 include:spf.protection.outlook.com include:_spf.itris.net include:_spf.mendix.com include:amazonses.com include:_spf.createsend.com include:spf.eu.exclaimer.net -all
strict (-all)
DMARC
v=DMARC1; p=quarantine; ruf=mailto:dmarcreporting@nehgroup.com; sp=quarantine; aspf=s; adkim=s; fo=1;
policy: quarantine · sp=quarantine
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDOX3Wj0BjrIPv2Sovnuca7EeDshGRDBvpLmg/PUxuIjaR6HrjGnu4bHkFrLfeuW/6bkU8hnv3Fbwk2QtIjA8…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzP3s/ClpoRIfn0duRrhhMSD/RxKRT6VnR/E0k+EyR9VX6AAliQ9NbV6Tk7LrBzvV9LqYldiAOpNMYb8Ukq…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDA82kgv79KVuhrgvB9Fkp5vxGwsHLouvUZOFPX6N6Yz4F0l1nBPUXUlGqct9O12ybi/OarhmZrUj/zz9p4kLAs+Q…
selectors probed

Certificate (current)

Sectigo Public Server Authentication CA DV R36
from 2025-07-08 to 2026-07-21
Expires in 48 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.beterwonen.nl/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
Header values
referrer-policy
strict-origin
permissions-policy
camera=(self), geolocation=(), microphone=(), payment=(), usb=()
x-content-type-options
nosniff
content-security-policy
base-uri 'self'; default-src 'self' 'nonce-6cIsmRLDuMeIQ8xxuOH/d4grvc0+Gi/rsEJBgQk+wsA=' https://beterwonenapi.oozon.nl; script-src 'strict-dynamic' 'nonce-6cIsmRLDuMeIQ8xxuOH/d4grvc0+Gi/rsEJBgQk+wsA=' 'unsafe-inline' http: https: 'self' https://*.tolkie.nl; style-src * 'unsafe-inline' https://*.googleapis.com https://*.tolkie.nl; style-src-elem * 'unsafe-inline' https://*.googleapis.com; img-src * data: blob: https://*.tolkie.nl; font-src * data:; frame-ancestors 'self'; frame-src 'self' data: blob: https://*.blob.core.windows.net https://*.doubleclick.net https://*.googletagmanager.com https://*.google.com https://*.readspeaker.com https://*.tolkie.nl https://*.youtube.com; connect-src 'self' 'nonce-6cIsmRLDuMeIQ8xxuOH/d4grvc0+Gi/rsEJBgQk+wsA=' https://beterwonenapi.oozon.nl https://beterwonen.oozon.nl data: https://*.bing.com https://*.clarity.ms https://dc.services.visualstudio.com/v2/track https://*.google-analytics.com https://*.googlesyndication.com https://*.g.doubleclick.net h
strict-transport-security
max-age=63072000; includeSubDomains; preload

Links to (4)

Linked from (1)