mbowebshop.nl

.nl crawl

First seen 2026-05-27 · Last seen 2026-05-27 · ok HTTP/1.1 200 522 ms crawled 2026-05-30

NL · 20.50.2.73 · AS8075 Microsoft Corporation

Reputation 94/100 dmarc monitor-only

Classifying

Technology

Stack: ASP.NET

DNS records live

NS

ns1.digistate.eu
ns2.digistate.nl
ns3.digistate.org

MX

0 mbowebshop-nl.mail.protection.outlook.com

TXT

cfjpvdgbt18unrlfa0b0vhvm7d
6q9o5n0p4hncji70he2mhl3816

Verified for

Google
Microsoft 365

Email authentication partial

SPF

v=spf1 a mx ip4:185.98.127.96/27 include:_spf.it-workz.nl include:spf.protection.outlook.com include:spf-de.emailsignatures365.com include:mailplus.nl include:spf.flowmailer.net include:spf.topdesk.net -all

strict (-all)

DMARC

v=DMARC1; p=none; sp=none; rua=mailto:watchdog3@watchdog.kevlarr.io,mailto:abuse@mbowebshop.nl; adkim=r; aspf=r;

policy: none (monitoring only) · sp=none

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3xvOj1VydjV8O/gZm04vr51LuJHeeWBJbiRBpH9mHzx64wEwjhzguSWVJ4qrlFaF72IZw559O5jV9M…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwhq63M9JXz3Z1YhE8mh47RRmH3LV1W3ZCIvg1M5XclN6MIcp+TJfaJWVlMaJFV7zjIzDJX7mbh2IKWBrrU…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1tQgxk2IKTW8kX4wTcNM2og/VyyeqMTj9Uv1MMXYglZKru6kAN4Ry/WmdIBasWUXOiVsY0xXSJr9wOnnc5…

selectors probed

Certificate (current)

Trust Provider B.V. TLS RSA CA G1

from 2025-10-02 to 2026-10-29

Expires in 150 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://mbowebshop.nl/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: strict-origin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self'; connect-src 'self' js.monitor.azure.com westeurope-5.in.applicationinsights.azure.com chatwidget-prod.web.app api.ipify.org; font-src 'self' maxcdn.bootstrapcdn.com fonts.gstatic.com; frame-src 'self' player.vimeo.com https://chatwidget-prod.web.app; img-src * data: blob:; media-src 'self' ; object-src 'self'; script-src 'self' *.azure.com https://chatwidget-prod.web.app *.queue-fair.net 'unsafe-inline' 'unsafe-eval'; style-src 'self' maxcdn.bootstrapcdn.com https://fonts.googleapis.com https://chatwidget-css.web.app 'unsafe-inline';
strict-transport-security: max-age=31536000

Linked from (1)

emazing.nl×1