indexo.dev

borestore.eu

.eu crawl

First seen 2026-04-14 · Last seen 2026-05-07 · ok HTTP/1.1 200 3189 ms crawled 2026-05-08

NL · 20.105.224.34 · AS8075 Microsoft Corporation

Reputation 100/100

Classifying

HTML metadata

Title
Build your bore | Vermeer Borestore Europe
Description
Vermeer has been the innovative leader in horizontal directional drilling since the beginning. Shop HDD tooling to get the job done. Jobs change. The un...
Language
en
Generator
Heart.work Commerce
Translations
  • bg-bg
  • bs-ba
  • cs-cz
  • da-dk
  • de-de
  • el-gr
  • es-es
  • et-ee
  • fi-fi
  • fr-fr
  • hr-hr
  • hu-hu
  • hy-am
  • it-it
  • kk-kz
  • lt-lt
  • lv-lv
  • mk-mk
  • nb-no
  • nl-nl
  • pl-pl
  • pt-pt
  • ro-ro
  • ru-ru
  • sk-sk
  • sl-si
  • sq-al
  • sv-se
  • tr-tr
  • uk-ua
  • uz-uz

Technology

Analytics
  • Google Tag Manager

Third-party hosts loaded (4)

  • cdn.heart.work×16
  • kit.fontawesome.com×1
  • rsms.me×1
  • www.googletagmanager.com×1

Social

DNS records live

NS
  • josh.ns.cloudflare.com
  • kara.ns.cloudflare.com
MX
  • 10 mxa-00217102.gslb.pphosted.com
  • 10 mxb-00217102.gslb.pphosted.com
TXT
  • MS=ms72805744
  • domain-verification:195b42df00b1476296f7e70964a50e3961d8f036

Email authentication strong

SPF
v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com ~all
softfail (~all)
DMARC
v=DMARC1; p=reject; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

GeoTrust TLS RSA CA G1
from 2026-03-11 to 2026-09-02
Expires in 106 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://borestore.eu/en-us

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
strict-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'none';frame-src blob: https://www.youtube.com;worker-src 'self' blob:;connect-src 'self' ka-p.fontawesome.com kit.fontawesome.com api.rollbar.com *.google-analytics.com *.analytics.google.com *.googletagmanager.com cdn.heart.work cdn-tst.heart.work cdn-dev.heart.work heartwork-commerce-api.azurewebsites.net heartwork-commerce-api-dev.azurewebsites.net heartwork-commerce-api-tst.azurewebsites.net localhost:*;font-src 'self' data: ka-p.fontawesome.com fonts.gstatic.com kit.fontawesome.com rsms.me https://rsms.me;img-src 'self' blob: data: s.gravatar.com *.wp.com/cdn.auth0.com/avatars cdn.heart.work *.google-analytics.com cdn.auth0.com *.googletagmanager.com https://borestore.eu https://www.vermeer.com;object-src 'self' blob:;script-src 'self' cdn.rollbar.com *.googletagmanager.com kit.fontawesome.com 'nonce-e3IfmMp0hkEHcHIly4O5+w==';style-src 'self' 'unsafe-inline' font.googleapis.com fonts.googleapis.com rsms.me kit.fontawesome.com ka-p.fontawesome.com
strict-transport-security
max-age=31536000; includeSubDomains

Links to (5)

Linked from (1)