herseninstituut.nl
herseninstituut.nl
HTML metadata
Technology
- CMS
- WordPress
- jQuery
- 3.6.0
- Analytics
-
- Google Tag Manager
- Fonts
-
- Google Fonts
Third-party hosts loaded (6)
- kit.fontawesome.com×3
- www.google.com×3
- cdnjs.cloudflare.com×1
- fonts.gstatic.com×1
- www.googletagmanager.com×1
- www.gstatic.com×1
Social
DNS records live
- NS
-
- matteo.ns.cloudflare.com
- stephane.ns.cloudflare.com
- MX
-
- 0 herseninstituut-nl.mail.protection.outlook.com
Email authentication partial
- SPF
-
v=spf1 include:spf.mailjet.com include:spf.protection.outlook.com -allstrict (-all) - DMARC
-
v=DMARC1; p=none; rua=mailto:automatisering@nin.knaw.nlpolicy: none (monitoring only) - DKIM
-
Show 12 DKIM selectors
- default:
v=DKIM1; p= - google:
v=DKIM1; p= - selector1:
v=DKIM1; p= - selector2:
v=DKIM1; p= - k1:
v=DKIM1; p= - k2:
v=DKIM1; p= - mail:
v=DKIM1; p= - dkim:
v=DKIM1; p= - s1:
v=DKIM1; p= - s2:
v=DKIM1; p= - mxvault:
v=DKIM1; p= - smtpapi:
v=DKIM1; p=
selectors probed - default:
Certificate (current)
R12
Expires in 66 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP uses wildcard sources
Header values
- referrer-policy
no-referrer-when-downgrade- x-frame-options
SAMEORIGIN- permissions-policy
geolocation=(self)- x-content-type-options
nosniff- content-security-policy
frame-ancestors 'self'; frame-src *.savviihq.com *.facebook.com *.google.com *.cookiebot.com *.hotjar.com *.youtube.com *.vimeo.com *.googletagmanager.com *.cookiebot.com *.fontawesome.com *.spotify.com *.springcast.com *.apple.com *.soundcloud.com *.pay.nl *.app.springcast.fm *.springcast.fm nin.nl herseninstituut.nl *.app-eu.readspeaker.com *.cdn-eu.readspeaker.com *.readspeaker.com- strict-transport-security
max-age=31536000;
Links to (10)
- youtube.com×1
- twitter.com×1
- readspeaker.com×1
- nin.nl×1
- linkedin.com×1
- knaw.nl×1
- instagram.com×1
- github.com×1
- facebook.com×1
- bsky.app×1