indexo.dev

gemeentehw.nl

.nl crawl

First seen 2026-05-24 · Last seen 2026-05-30 · ok HTTP/1.1 200 6163 ms crawled 2026-05-29

NL · 87.233.198.3 · AS15703 TrueFullstaq B.V.

Reputation 100/100

Classifying

HTML metadata

Title
Gemeente Hoeksche Waard
Language
nl-NL
Canonical
https://www.gemeentehw.nl/
Feeds

Open Graph

url
https://www.gemeentehw.nl/
title
Gemeente Hoeksche Waard
locale
nl_NL
site name
Gemeente Hoeksche Waard

Technology

CMS
WordPress

Third-party hosts loaded (4)

  • kit.fontawesome.com×2
  • alert.zhzveilig.nl×1
  • cloudstatic.obi4wan.com×1
  • gmpg.org×1

Social

Contact

Phone

Registration

Registrar
Realtime Register
Created
2013-12-21
Updated
2021-11-30
Name servers
  • ns2.argewebhosting.com
  • ns3.argewebhosting.nl
  • ns1.argewebhosting.eu

DNS records live

NS
  • ns1.argewebhosting.eu
  • ns2.argewebhosting.com
  • ns3.argewebhosting.nl
MX
  • 1 gemeentehw-nl.mail.protection.outlook.com
TXT
Show 8 TXT records
  • 5xm9tnqb8ppj9wzyzdtbh9pb5xy7z8ys
  • cw4pbj8d4903c3b6rp90znccfczv06n1
  • DomainVerification=C5HNIBSPXABEVT8GBYHC0RGQZH53P1QAXJOH2LHFC6K0358DX83GSC0TPVYU5XXM
  • npl688fnqd7zh42qdr5725p4d6kh2rx3
  • 81qjfpjr5cbyldnhf7nq5mf0d2fk3hnk
  • mrk1hhb9tc7v2pcsw0s15d81f25qtjld
  • 8rc2rs2xzqmxkbtfyzh9hmy1xxpv2kjb
  • jao2NP3jros1E2LvxdPtZ2FgrTp6nEeNtMWNrL5i94WgITYe9p64uSDO3l5fOivtcokpHbzOxcxXrZvIqIUxkg==
Verified for
  • Apple
  • Google

Email authentication strong

SPF
v=spf1 include:spf.shockmedia.email include:spf.decoscloud.com include:spf.eprov.nl include:spf.protection.outlook.com include:_spf.services.centric.eu include:spf_servers.yard.nl include:amazonses.com include:spf.mr-hosting.nl ip4:91.218.37.0/24 ip4:213.34.143.15 ip4:194.165.34.0/24 ip4:217.119.226.64/27 ip4:40.119.150.126 ip6:2a02:1398:0:8::/64 ip4:87.251.35.5 -all
strict (-all)
DMARC
v=DMARC1; p=reject; rua=mailto:okh5idu1@ag.eu.dmarcadvisor.com; ruf=mailto:okh5idu1@fr.eu.dmarcadvisor.com;
policy: reject (enforced)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAun3QwlJy46LseQjM5qa8wdQ1PxU83UNT98fWrIfYp/MQ4xAt+ZLu6qu4IvVQ1dUNEzeQDAz81FFTwV…
  • selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqwDLhlBnuH+fehjxga9S3KoPM84ML6EmNB5cXvB0kXGiHb0Lx4kis+hZDjD0t/dAKot0NPpZJOf1DJ…
  • mail: v=DKIM1; h=sha256; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqxxo/DBw6Ff8+zRDHlwlggq2XC652yvRgwPxMjtulH71ZlmtEX7dxD5zWp3LAM/nlt+I…
selectors probed

Certificate (current)

Sectigo Public Server Authentication CA EV R36
from 2025-10-30 to 2026-11-25
Expires in 177 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.gemeentehw.nl/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak frame protection
  • weak content type protection
Header values
referrer-policy
strict-origin-when-cross-origin, same-origin
x-frame-options
sameorigin, SAMEORIGIN
permissions-policy
accelerometer=(self), autoplay=(self), camera=(self), cross-origin-isolated=(self), document-domain=*, encrypted-media=(self), fullscreen=(self "https://view.publitas.com"), geolocation=(self), gyroscope=(self), magnetometer=(self), microphone=(self), midi=(self), payment=(self), picture-in-picture=*, publickey-credentials-get=(self), screen-wake-lock=(self), sync-xhr=*, usb=(self), xr-spatial-tracking=(self)
x-content-type-options
nosniff, nosniff
content-security-policy
base-uri 'self'; default-src 'self' 'unsafe-eval' 'unsafe-inline' https://*.pusher.com https://alert.zhzveilig.nl https://app.obi4wan.ai https://app-eu.readspeaker.com https://cloudstatic.obi4wan.com https://chatapi.obi4wan.com https://fonts.googleapis.com https://fonts.gstatic.com https://e.issuu.com https://img.youtube.com https://ka-p.fontawesome.com https://kit.fontawesome.com https://maps.googleapis.com https://maps.gstatic.com https://media-eu.readspeaker.com https://obipubvideo.s3.eu-central-1.amazonaws.com https://cdn1.readspeaker.com https://cdn-eu.readspeaker.com/ https://wrapi-eu.readspeaker.com https://region1.analytics.google.com https://region1.google-analytics.com https://secure.gravatar.com https://siteimproveanalytics.com https://translate-pa.googleapis.com https://translate.google.com https://translate.googleapis.com https://vttts-eu.readspeaker.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.youtube-nocookie.com wss://w
strict-transport-security
max-age=31536000; includeSubDomains; preload, max-age=31536000; includeSubDomains

Links to (8)

Linked from (2)