heinekenexperience.com

HTML metadata

Technology

CDN

Azure Front Door

CMS

Next.js

Analytics

• Google Tag Manager

Third-party hosts loaded (3)

• a.storyblok.com×22
• nexus.ensighten.com×1
• www.googletagmanager.com×1

Social

• instagram
• facebook

Registration

Registrar

CSC Corporate Domains, Inc.

Created

2000-12-14

Expires

2026-12-14 207 days left

Updated

2025-12-10

Name servers

• dns1.cscdns.net
• dns2.cscdns.net

DNS records live

NS

• dns1.cscdns.net
• dns2.cscdns.net

MX

• 0 heinekenexperience-com.mail.protection.outlook.com

Verified for

• Google
• Meta
• Microsoft 365

Email authentication strong

SPF

v=spf1 include:_u.heinekenexperience.com._spf.smart.ondmarc.com include:spf.protection.outlook.com ~all

softfail (~all)

DMARC

v=DMARC1; p=reject; pct=100; sp=reject; rua=mailto:515c7f87@inbox.ondmarc.com; ruf=mailto:515c7f87@inbox.ondmarc.com; adkim=r; aspf=r; fo=1; rf=afrf; ri=3600

policy: reject (enforced) · sp=reject

DKIM

• selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQChwzNVBBxolTJP6RN/9xiaO41sTuyhFjoMawyUJDDHgSNVbpNIdJDAXqBOMdtwwYLph0usZZ5leevATmH/79…
• selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDLVhFDjdmmQxNqz3BkyUVpbyVHpN3ClUe6coD3jtd8Za1P9zJtFDGk7LpdrJj60qg1RFKg9Gpjeykdgm3Mz6…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://www.heinekenexperience.com/en

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (5)

• facebook.com×2
• heineken.com×2
• instagram.com×2
• theheinekencompany.com×2
• tripadvisor.com×2

Linked from (2)

• amsterdamboatexperience.com×2
• flagshipamsterdam.com×2