indexo.dev

fwo.be

.be crawl

First seen 2026-05-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 7504 ms crawled 2026-05-16

BE · 194.78.23.107 · AS5432 Proximus NV

Reputation 100/100

sector other type parked

HTML metadata

Language
nl
Canonical
https://fwo.be/nl/

Technology

Server
Microsoft-IIS
Cookie consent
  • Cookiebot

Third-party hosts loaded (4)

  • app-fwosearch-bot-dev-02.azurewebsites.net×1
  • cdn.botframework.com×1
  • cdnjs.cloudflare.com×1
  • consent.cookiebot.com×1

Social

Contact

Phone

DNS records live

NS
  • ns1.clf.proximus.be
  • ns2.clf.proximus.be
  • ns3.clf.proximus.be
MX
  • 10 fwo-be.mail.protection.outlook.com
  • 8 d150521a.ess.barracudanetworks.com
  • 9 d150521b.ess.barracudanetworks.com
TXT
  • ms-domain-verification=7c3bfc85-a200-42b7-a834-fc182818c3cf
  • MS=6E3EE94995BD68E88E77D196AE586D8E96622240
  • MS=ms42400563

Email authentication strong

SPF
v=spf1 ip4:194.78.23.113 mx include:spf.afas.online include:spf.flexmail.eu include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=quarantine; fo=1; rua=mailto:dmarc@fwo.be,mailto:rua+fwo.be@dmarc.barracudanetworks.com; ruf=mailto:dmarc@fwo.be,mailto:ruf+fwo.be@dmarc.barracudanetworks.com
policy: quarantine
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDOcSdSTPN5WKNBhz0rY+0HjHyOFV27utz17jMl1doAoM/BjX7sg8W6zJKSxlf8MhWpGro0oCvNG19gOWM5QZ…
  • selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQD5Rx6xC/C7YPLWfb3SejiI4XLGbb9Ts6fTYHq0Ze9qwdH5CkZQmkR6M6laOCIeR3boRFQXHpF0N5PT+xaKvV…
selectors probed

Certificate (current)

DigiCert EV RSA CA G2
from 2025-10-13 to 2026-11-14
Expires in 178 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://fwo.be/nl/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
DENY
content-security-policy
default-src 'self' https://cdn.flbx.io https://packages.umbraco.org https://our.umbraco.org;script-src 'self' https://ajax.googleapis.com https://unpkg.com https://ajax.aspnetcdn.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://consent.cookiebot.com https://consentcdn.cookiebot.com https://cdn.botframework.com https://connect.getflowbox.com https://app-fwosearch-bot-dev-02.azurewebsites.net 'unsafe-inline';style-src 'self' https://fonts.googleapis.com https://cdn.jsdelivr.net https://cdnjs.cloudflare.com https://cdn.linearicons.com https://app-fwosearch-bot-dev-02.azurewebsites.net 'unsafe-inline';connect-src 'self' https://consentcdn.cookiebot.com wss://europe.directline.botframework.com https://europe.directline.botframework.com https://app-fwosearch-bot-dev-02.azurewebsites.net ws://localhost:* https://gateway.getflowbox.com https://a.getflowbox.com http://localhost:*;font-src 'self' data: https://cdnjs.cloudflare.com https://fonts.gstatic.com https://cdn.linearicon
strict-transport-security
max-age=31536000; includeSubDomains

Links to (6)

Linked from (7)