indexo.dev

depurmaryn.nl

.nl crawl

First seen 2026-06-01 · Last seen 2026-06-04 · ok HTTP/1.1 200 106 ms crawled 2026-06-02

US · 104.26.15.233 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Hét theater in Purmerend | Theater De Purmaryn in Purmerend
Description
Van musical tot cabaret en van toneel tot concert; geniet van de mooiste voorstellingen in Theater de Purmaryn. Koop je kaartjes eenvoudig en snel!
Canonical
https://depurmaryn.nl/home

Technology

CDN
Cloudflare
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (3)

  • fonts.googleapis.com×3
  • fonts.gstatic.com×1
  • www.googletagmanager.com×1

Social

Contact

Phone

DNS records live

NS
  • guy.ns.cloudflare.com
  • kiki.ns.cloudflare.com
MX
  • 10 mailfilters.ezorg.nl
  • 20 mailfilters.ezorg.nl
  • 30 mailfilters.ezorg.nl
  • 40 mailfilters.ezorg.nl
TXT
Show 7 TXT records
  • 8vMkvC7DJtGLty/LaftbIyPZL2r7B5fY+bCbRj+wJC4=
  • U4OgcTr7v2ynH1cUekalSWdL8eYuP3Xgdalj3j9bx0dOgx+wNT5KilMGvTXubu4ZD6I0BcqZwsaidBoMCVC0TQ==
  • UCAT23sU
  • dzCSxChF+Emd5ZFPjygxDWsAKVk9+oBI7BT6eGqo+pk=
  • v=NTA7516-1;startdate=2023-06;enddate=2026-06;provider=Zivver
  • 04x4fLS7AjfTsYPjJzk8k7rbvebOq2jfEp0KKOR0iWE=
  • 7v3vjanuot2oudrr2fm0um300a
Verified for
  • Adobe
  • GlobalSign
  • Microsoft 365

Email authentication strong

SPF
v=spf1 include:spf.depurmaryn.nl.eu-hrkxiyit.e1.dspf.app -all
strict (-all)
DMARC
v=DMARC1; p=reject; rua=mailto:hrkxiyit@ag.eu.dmarcadvisor.com,mailto:rapportages@dmarc.ibdgemeenten.nl; ruf=mailto:dmarcforensicreports@purmerend.nl
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

E8
from 2026-05-28 to 2026-08-26
Expires in 82 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://depurmaryn.nl/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
autoplay=(*), geolocation=(), midi=(), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), fullscreen=(*), payment=()
x-content-type-options
nosniff
content-security-policy
default-src 'self' 'unsafe-inline' 'unsafe-eval' data: http://localhost:5173 https://localhost:5173 https://*.local https://*.botest.nl https://stats.purmerend.nl https://*.basicorange.nl https://*.hotjar.io https://*.hotjar.com wss://*.hotjar.com https://*.youtube.com https://*.youtube-nocookie.com https://*.ytimg.com https://*.google.com https://*.google.nl https://*.google-analytics.com https://www.googletagmanager.com https://*.googleapis.com https://*.ticketmatic.com https://i.vimeocdn.com https://code.jquery.com https://*.gstatic.com https://*.cloudflare.com https://widget.freshworks.com https://basicorange.freshdesk.com https://*.zenchef.com; img-src * 'self' data: https://*.local https://*.botest.nl https://*.bostaging.nl https://*.depurmaryn.nl; frame-src 'self' https://*.local https://*.botest.nl https://*.basicorange.nl https://vars.hotjar.com/ https://*.youtube.com https://*.youtube-nocookie.com https://*.resengo.com https://*.zenchef.com https://*.google.com; connect-src '
strict-transport-security
max-age=63072000; includeSubDomains; preload

Links to (5)

Linked from (2)