indexo.dev

broodexpress.com

.com crawl

First seen 2026-04-20 · Last seen 2026-05-16 · ok HTTP/1.1 200 2780 ms crawled 2026-05-14

NL · 35.214.211.216 · AS15169 Google LLC

Reputation 87/100 weak security headers no dmarc policy

Classifying

HTML metadata

Title
Home - BroodExpress
Description
Onze broodjeszaak levert heerlijke verse broodjes en veel meer in de ruime regio rond Rotterdam. Ontdek hier wat wij voor u kunnen betekenen!
Language
nl-NL
Generator
Elementor 3.35.7; features: additional_custom_breakpoints; settings: css_print_method-external, google_font-enabled, font_display-auto
Canonical
https://broodexpress.com/

Open Graph

url
https://broodexpress.com/
title
Home - BroodExpress
locale
nl_NL
site name
BroodExpress
description
Onze broodjeszaak levert heerlijke verse broodjes en veel meer in de ruime regio rond Rotterdam. Ontdek hier wat wij voor u kunnen betekenen!

Technology

Server
nginx
CMS
WordPress
Analytics
  • Google Tag Manager

Third-party hosts loaded (3)

  • gmpg.org×1
  • www.google.com×1
  • www.googletagmanager.com×1

Contact

Email
Phone

Registration

Registrar
Key-Systems GmbH
Created
2007-12-21
Expires
2026-12-21 214 days left
Updated
2025-12-22
Name servers
  • ns0.transip.net
  • ns1.transip.nl
  • ns2.transip.eu

DNS records live

NS
  • ns0.transip.net
  • ns1.transip.nl
  • ns2.transip.eu
MX
  • 10 aspmx.l.google.com
  • 20 alt1.aspmx.l.google.com
  • 20 alt2.aspmx.l.google.com
  • 30 alt3.aspmx.l.google.com
  • 30 alt4.aspmx.l.google.com
Verified for
  • Google

Email authentication weak

SPF
v=spf1 ip4:37.97.142.104 ip4:5.10.93.54 ip4:37.97.172.38 include:servers.mcsv.net include:_spf.google.com include:_spf.hostnet.nl ~all
softfail (~all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

R13
from 2026-04-03 to 2026-07-02
Expires in 43 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://broodexpress.com/

present
  • x-content-type-options
  • permissions-policy
findings
  • missing HSTS
  • missing Content Security Policy
  • missing frame protection
  • missing Referrer Policy
Header values
permissions-policy
private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")
x-content-type-options
nosniff

Links to (2)

Linked from (5)