gaaf.io

.io ok HTTP/1.1 200 207 ms

First seen 2026-06-03 · Last seen 2026-06-17 · crawled 2026-06-18

NL · 185.233.175.140 · AS204983 Cyberfusion B.V.

Reputation 89/100 weak security headers dmarc monitor-only

sector media news type blog

HTML metadata

Title: Gaaf - digital agency | Webshops, websites, software en apps
Description: Van vraagstuk, naar online oplossing. Samen ontwerpen, ontwikkelen en optimaliseren we maatwerk. Een oplossing die werkt en meegroeit met jouw bedrijf!
Language: nl-NL
Generator: WordPress 6.9.4
Canonical: https://gaaf.io/

Open Graph

url: https://gaaf.io/
title: Gaaf - digital agency | Webshops, websites, software en apps
locale: nl_NL
site name: Gaaf
description: Van vraagstuk, naar online oplossing. Samen ontwerpen, ontwikkelen en optimaliseren we maatwerk. Een oplossing die werkt en meegroeit met jouw bedrijf!
updated time: 2026-05-11T11:56:00+00:00

Contact

Technology

Server: Apache
CMS: WordPress 6.9.4
jQuery: 3.7.1

Analytics

Google Tag Manager

Third-party hosts loaded (4)

assets.cookieconfirm.com×1
cdn.leadinfo.net×1
gmpg.org×1
www.googletagmanager.com×1

Social

DNS records live

NS

nsauth0.cyberfusion.nl
nsauth1.cyberfusion.nl
nsauth2.cyberfusion.nu

MX

0 gaaf-io.mail.protection.outlook.com

TXT

include:domain_code.mertis.app

Verified for

Google
Microsoft 365

Email authentication partial

SPF

v=spf1 include:_spf.cyberfusion.nl include:spf.protection.outlook.com include:_spf.mertis.app include:werkgroepberdien.gaaf.io ~all

softfail (~all)

DMARC

v=DMARC1; p=none; sp=quarantine

policy: none (monitoring only) · sp=quarantine

DKIM

default: v=DKIM1; h=sha256; k=rsa; p=MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvj7I57jbMQm1qefBkPAzurLOvo3yGXmqFiyP9zBrWraw1s82wfZpfAuXBZkYPd2qyqGM…
mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…

selectors probed

Certificate (current)

Sectigo Public Server Authentication CA DV R36

from 2026-05-16 to 2026-12-01

Expires in 163 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://gaaf.io/

findings

missing HSTS
missing Content Security Policy
missing frame protection
missing content type protection
missing Referrer Policy
missing Permissions Policy

Links to (3)

Linked from (1)

wijzijnbaanmeesters.nl×2

Use this data via API

Everything on this page for gaaf.io is available as JSON from the indexo.dev REST & MCP API.

curl "https://indexo.dev/api/v1/domains/gaaf.io" \
  -H "X-API-Key: idx_..."

Read the docs & get a free key →

Add a badge to your site

Own gaaf.io? Show it's tracked on indexo.dev and link visitors straight to this page.

<a href="https://indexo.dev/gaaf.io" target="_blank" rel="noopener">
  <img src="https://indexo.dev/gaaf.io/badge.svg" alt="indexo.dev — gaaf.io">
</a>