indexo.dev

herladen.be

.be crawl

First seen 2026-05-11 · Last seen 2026-05-16 · ok HTTP/1.1 200 6866 ms crawled 2026-05-16

US · 3.164.68.21 · AS16509 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Online Herladen binnen 29 Seconden | Herladen.be
Description
24/7 online giftcards en beltegoed prepaid herladen voor alle providers. Binnen 29 seconden beltegoed bestellen en code direct per e-mail.
Language
nl
Canonical
https://www.herladen.be/

Open Graph

title
Online Herladen binnen 29 Seconden | Herladen.be
description
24/7 online giftcards en beltegoed prepaid herladen voor alle providers. Binnen 29 seconden beltegoed bestellen en code direct per e-mail.

Technology

CDN
Amazon CloudFront
Server
CloudFront
CMS
Next.js

Third-party hosts loaded (1)

  • cdnjs.cloudflare.com×5

Social

DNS records live

NS
  • ns-1178.awsdns-19.org
  • ns-1628.awsdns-11.co.uk
  • ns-76.awsdns-09.com
  • ns-961.awsdns-56.net
MX
  • 10 herladen-be.mail.protection.outlook.com
TXT
Show 4 TXT records
  • MS=ms57535018
  • facebook-domain-verification=i3f6hne96v9dzu1zdkcm0ddxkssrh3
  • google-site-verification=ZxVjZXFH1-xOSorJqPiiD_7xFq24N-_BDWMqR58EEVM
  • klaviyo-site-verification=XFSZVU

Email authentication partial

SPF
v=spf1 include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=none
policy: none (monitoring only)
DKIM
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed

Certificate (current)

Amazon RSA 2048 M04
from 2025-10-29 to 2026-11-28
Expires in 193 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.herladen.be/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP uses wildcard sources
  • weak frame protection
  • missing Permissions Policy
Header values
referrer-policy
same-origin
x-frame-options
SAMEDOMAIN
x-content-type-options
nosniff
content-security-policy
default-src 'self'; font-src 'self' https://*.a.run.app https://*.eu.vaultmaxx.com https://deviceid.eu.vaultmaxx.com https://*.klaviyo.com https://fonts.gstatic.com https://use.typekit.net https://fonts.googleapis.com; img-src 'self' data: https://lantern.roeye.com https://img.sct.eu1.usercentrics.eu https://*.a.run.app https://*.eu.vaultmaxx.com https://www.google.co.uk https://stats.g.doubleclick.net https://www.google.co.uk https://deviceid.eu.vaultmaxx.com https://googleads.g.doubleclick.net https://www.google.ro https://pimcore-prd.reloads20.nl https://whitecalling-prd.reloads20.nl https://*.aufladen.kaufland-mobil.de https://aufladen.kaufland-mobil.de https://*.facebook.com https://*.bing.com https://*.cookiebot.com https://*.gstatic.com https://googleads.g.doubleclick.net https://*.paypal.com https://*.paypalobjects.com https://cdnjs.cloudflare.com https://www.googletagmanager.com https://www.google-analytics.com https://www.google.nl https://*.google.com https://*.xtremepu
strict-transport-security
max-age=31536000; includeSubdomains; preload

Links to (8)

Linked from (3)