indexo.dev

bvo.nl

.nl crawl

First seen 2026-05-27 · Last seen 2026-05-30 · ok HTTP/1.1 200 311 ms crawled 2026-05-30

US · 141.101.90.99 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Boertien Vergouwen Overduin
Description
Boertien Vergouwen Overduin is hét topbureau op het gebied van training, opleiding en coaching in Nederland. Bekijk het uitgebreide aanbod.
Language
nl-NL

Technology

CDN
Cloudflare
CMS
Next.js
JS framework
Next.js

Third-party hosts loaded (2)

  • assets-eu-01.kc-usercontent.com×6
  • kdpd7zy063-dsn.algolia.net×1

Social

Contact

Phone
Address
Marathon 7, 1213PD, Hilversum, Noord-Holland, NL

DNS records live

NS
  • ashley.ns.cloudflare.com
  • norman.ns.cloudflare.com
MX
  • 5 d304694.a.ess.de.barracudanetworks.com
  • 5 d304694.b.ess.de.barracudanetworks.com
TXT
  • BPL=5284929
  • BxPsNaSw8Vgm5Iw0G+bt6vyeywS5j6fRGmAA1Lcjxo6f33DI91387N/MhGYKaskSRkc1iVhNHWz/RV5oVO8vjQ==
Verified for
  • Dynamics 365
  • Google
  • Meta
  • OpenAI

Email authentication strong

SPF
v=spf1 a include:spf.oplg.nl include:spf.protection.outlook.com include:lms.plusport.com ip4:35.156.112.28 -all
strict (-all)
DMARC
v=DMARC1; p=reject; fo=1; rua=mailto:rua+bvo.nl@dmarc.barracudanetworks.com; ruf=mailto:ruf+bvo.nl@dmarc.barracudanetworks.com
policy: reject (enforced)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw8iqzgDJaJ18nPaFmzSnqHCSrpgmwbsJ/i0oLQyPaDiyAW0iqJUtyfz4fMEjDCFWRoakOHa6CPLBC2…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/EKuMFHR6yXmcJRl5I5QLe3YtQdH62aa8n0tzn9L3EB+dTa4vJ7S7oKWQFpNGnO6w2iZxz7J6BXWzjs7o1…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCsjZMXEgP+ok4LsspL2PJXZBpsGt1BwOXSiakbm76W8Q1F3BtcJwZPzeLdin929rPLy+u4CUq+hLCyDIvWIk2v+f…
selectors probed

Certificate (current)

WE1
from 2026-04-06 to 2026-07-05
Expires in 34 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.bvo.nl/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-content-type-options
nosniff
content-security-policy
frame-ancestors 'self' https://*.uniform.app https://uniform.app; default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' 'unsafe-hashes' https://uniform.app https://*.uniform.app https://*.wozzbot.com https://*.googletagmanager.com https://*.segment.com https://*.youtube.com https://*.jsdelivr.net https://*.hsforms.net https://*.osano.com https://*.cloudflareinsights.com https://*.bing.com https://*.licdn.com https://*.facebook.net https://*.doubleclick.net https://*.clarity.ms https://*.google.com https://*.gstatic.com; worker-src 'self' blob:; connect-src 'self' https://*.wozzbot.com https://*.hsforms.com https://*.bugsnag.com https://*.segment.com https://*.algolianet.com https://*.algolia.net https://*.algolia.io https://*.kontent.ai https://*.netlify.app https://*.opleidingsgroep.nl https://*.ncoi.nl https://*.osano.com https://*.bing.com https://*.bing.net https://*.clarity.ms https://*.doubleclick.net https://*.google.com https://*.google.nl https://*.google.pt http
strict-transport-security
max-age=31536000

Links to (7)

Linked from (1)