indexo.dev

mascotte.nl

.nl crawl

First seen 2026-06-02 · Last seen 2026-06-03 · ok HTTP/1.1 200 1674 ms crawled 2026-06-02

DE · 195.201.138.123 · AS24940 Hetzner Online GmbH

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Mascotte | Home page
Language
nl-nl
Canonical
https://www.mascotte.nl/nl_nl/home/
Translations
  • en ×4
  • nl ×2
  • es
  • fr
  • pl

Open Graph

url
https://www.mascotte.nl/nl_nl/home/
title
Mascotte | Home page
locale
nl_NL
site name
MASCOTTE

Technology

CDN
Amazon CloudFront
Server
Apache
CMS
Gatsby
Stack
PHP
Third-party hosts loaded (14)
  • fonts.typotheque.com×3
  • pro.fontawesome.com×3
  • www.mascotte.be×3
  • cdn-m-mascotte.ecxdev.io×2
  • content.prod-m-mascotte.ecxdev.io×2
  • polyfill.io×2
  • s3-eu-west-1.amazonaws.com×2
  • webcache.datareporter.eu×2
  • www.google.com×2
  • www.gstatic.com×2
  • www.mascotte.es×2
  • www.mascotte.pl×2
  • chimpstatic.com×1
  • www.mascotte.eu×1

Social

DNS records live

NS
  • cns1.alfahosting.info
  • cns2.alfahosting.info
  • cns3.alfahosting.info
MX
  • 10 mx01.hornetsecurity.com
  • 20 mx02.hornetsecurity.com
  • 30 mx03.hornetsecurity.com
  • 40 mx04.hornetsecurity.com

Email authentication weak

SPF
v=spf1 mx include:spf.protection.outlook.com include:spf.hornetsecurity.com include:servers.mcsv.net include:spf.toscom.at ~all
softfail (~all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

Sectigo Public Server Authentication CA DV R36
from 2026-03-11 to 2027-04-11
Expires in 310 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://www.mascotte.nl/nl_nl/

present
  • strict-transport-security
  • content-security-policy-report-only
  • x-frame-options
  • x-content-type-options
findings
  • missing Content Security Policy
  • weak frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN, SAMEORIGIN
x-content-type-options
nosniff
strict-transport-security
max-age=63072000
content-security-policy-report-only
script-src-elem webcache.datareporter.eu webcache-eu.datareporter.eu sibautomation.com *.brevo.com cdn.jsdelivr.net cdnjs.cloudflare.com connect.facebook.net *.google-analytics.com *.google.com *.googletagmanager.com *.gstatic.com polyfill.mstage.dev *.usersnap.com; style-src-elem https://webcache.datareporter.eu https://webcache-eu.datareporter.eu cdn.jsdelivr.net fonts.googleapis.com; font-src webcachex-eu.datareporter.eu *.fontawesome.com fonts.gstatic.com data: online.swagger.io *.gstatic.com 'self' data: data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.facebook.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src bid.g.doubleclick.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcomm

Links to (4)

Linked from (2)