heracles.nl

HTML metadata

Technology

Server

nginx

CMS

WordPress

jQuery

3.7.1

Analytics

• Google Tag Manager

Third-party hosts loaded (3)

• img.youtube.com×3
• cdnjs.cloudflare.com×2
• www.googletagmanager.com×1

Social

• youtube
• instagram
• facebook
• twitter
• linkedin
• tiktok

Registration

Registrar

Previder B.V.

Created

1997-03-10

Updated

2016-11-16

Name servers

• nsauth2.introweb.nl
• nsauth3.introweb.net
• nsauth1.introweb.nl

DNS records live

NS

• nsauth1.introweb.nl
• nsauth2.introweb.nl
• nsauth3.introweb.net

MX

• 0 heracles-nl.mail.protection.outlook.com

TXT

• spf.bundeling.com
• spf2.0/pra include:mxlogic.net ip4:87.249.122.194 ip4:80.65.96.45 ip4:80.65.118.84 ip4:77.222.64.228 include:spf.heracles.nl include:spf.communicatormail.com include:_spf.exonet.nl -all
• qi9wmQ3xxEUxbcvFDWnDN2xZV6evWGy7

Verified for

• Google
• Microsoft 365

Email authentication partial

SPF

v=spf1 mx a ip4:185.83.9.37 ip4:185.83.10.106 ip4:77.222.64.228 ip4:87.249.122.194 ip6:2a03:9700:8000:0:e4c4:bebf:bc16:fa1c include:7480293.spf04.hubspotemail.net include:spf.mandrillapp.com include:spf.communicatoremail.com include:spf.protection.outlook.com include:spf.afas.online -all

strict (-all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

Show 5 DKIM selectors

• selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8xzSopmJiOYGv8C5u255qGSYhOLY9uNUWiDxX/z89bces0WhAL6Sfdk3T1GJrKAghQ2SDFDhEiDm1N…
• selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt+JvJmAD3EYYWPjX9jAwhzgT7oiagAIOIcTvKn1ISqkaKCgY/et2zbY6nCXxjrzDR4J3BVDNnqROKM…
• s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Bt31OjZMK3xAz06oOW7B+8joyKUNt9O3l8SGZl4er55SJNN+Og5teylOy+k6yTvlg6HKtq7L3gw8dgCNq…
• s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDvK8e2G7gm9jbLp2t5EdNyXkTFbm3zsfkI7GMa5INWkfJXN7RwW9iJEZwfcI1esORv3nMqGuhgJ78CE0uqu27WX8…
• smtpapi: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwfQW76…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://www.heracles.nl/

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (40)

• adwise.nl×1
• asito.nl×1
• autohaarhuis.nl×1
• bank.nl×1
• body-supplies.nl×1
• covebo.nl×1
• creon-kozijnen.nl×1
• dfds.com×1
• dijkstrawierden.nl×1
• espn.nl×1
• facebook.com×1
• finney.nl×1
• heineken.com×1
• hemar-hout.nl×1
• hetideaal.nl×1
• hoppenbrouwerstechniek.nl×1
• huus.nl×1
• instagram.com×1
• kafmontage.nl×1
• lemerij.nl×1
• linkedin.com×1
• looping.nl×1
• onderneming.nl×1
• romerohoveniers.nl×1
• royaal-kozijnen.nl×1
• shockmedia.nl×1
• stanno.com×1
• tencategrass.com×1
• terstal.nl×1
• thuisgenoten.nl×1
• tiktok.com×1
• twitter.com×1
• vdlgroep.com×1
• vergelijkenuitvaartverzekeringen.nl×1
• visymo.com×1
• voetbalreizen.com×1
• voicedata.nl×1
• x.com×1
• youtube.com×1
• zakelijkelening.nl×1

Linked from (3)

• voetballinks.nl×1
• eredivisie.nl×1
• twentevoetbalnieuws.nl×1