indexo.dev

humanwave.nl

.nl crawl

First seen 2026-05-16 · Last seen 2026-05-31 · ok HTTP/1.1 200 2898 ms crawled 2026-05-20

NL · 85.10.159.29 · AS34762 Combell NV

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
HR-Business Partner | HR-software voor het MKB | Humanwave
Description
Jouw hr-adviseur en partner voor het vergemakkelijken van je hr-administratie ✔ Verlofapp ✔ Medewerker app ✔ Salarisadministratie
Language
nl-NL
Generator
Divi v.4.27.4
Canonical
https://humanwave.nl/
Feeds

Open Graph

url
https://humanwave.nl/
title
HR-Business Partner | HR-software voor het MKB | Humanwave
locale
nl_NL
site name
Humanwave
description
Jouw hr-adviseur en partner voor het vergemakkelijken van je hr-administratie ✔ Verlofapp ✔ Medewerker app ✔ Salarisadministratie

Technology

Server
nginx
CMS
WordPress
Analytics
  • Google Tag Manager
Social widgets
  • YouTube Embed
Third-party hosts loaded (7)
  • fd.cleantalk.org×3
  • cdn.trustindex.io×2
  • humanwave.stackbase.nl×2
  • www.googletagmanager.com×2
  • css.zohocdn.com×1
  • js.zohocdn.com×1
  • www.youtube.com×1

Social

Contact

Email
Phone

DNS records live

NS
  • ns0.transip.net
  • ns1.transip.nl
  • ns2.transip.eu
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
Verified for
  • Google
  • Microsoft 365
  • Zoho

Email authentication partial

SPF
v=spf1 include:spf.mailjet.com include:eu.zcsend.net include:_spf.google.com include:spf.zoho.eu include:eu.transmail.net ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:dmarc@humanwave.nl; ruf=mailto:dmarc@humanwave.nl; sp=none;
policy: none (monitoring only) · sp=none
DKIM
  • google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyOGtP5qVtoqcwpZoU7cl2vAgr8oKWqV4ch1uVrs6EAQh8l+JeB3+fWcdYIhgfmGX06uw8cWaBJZICy…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxP9DoBRlxop0hONS+WjGlLboxcvaBarT+NFLV2kGAlKs/XPfGFTNpdJ7nqyFDWY5Qr/knNEk4QJGlRMmOO…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt1N4VurhsU8gRVczNjNJ+uyamIe/4XpqheN2FEDVGHCzjOuiEnLWTfNMkNJkBTl8qxX3f1rM1B5Cpvb5ya…
selectors probed

Certificate (current)

R12
from 2026-05-19 to 2026-08-17
Expires in 77 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://humanwave.nl/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
  • cross-origin-embedder-policy
  • cross-origin-resource-policy
findings
  • CSP uses wildcard sources
  • missing frame protection
Header values
referrer-policy
strict-origin-when-cross-origin
permissions-policy
accelerometer=(), autoplay=(), camera=(), cross-origin-isolated=(), display-capture=(self), encrypted-media=(), fullscreen=*, geolocation=(self), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), payment=*, picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), xr-spatial-tracking=(), gamepad=(), serial=()
x-content-type-options
nosniff
content-security-policy
frame-ancestors 'self' https://app.humanwave.nl http://localhost:* https://staging-p2k.appspot.com https://test-p2k.appspot.com https://hw-dev.appspot.com;
strict-transport-security
max-age=63072000; includeSubDomains; preload
cross-origin-opener-policy
unsafe-none
cross-origin-embedder-policy
unsafe-none; report-to='default'
cross-origin-resource-policy
cross-origin

Links to (5)

Linked from (1)