indexo.dev

metsemakers.nl

.nl crawl

First seen 2026-06-04 · Last seen 2026-06-04 · ok HTTP/1.1 200 1222 ms crawled 2026-06-04

FR · 5.196.134.168 · AS16276 OVH SAS

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Catering te Herten bij Metsemakers Starmans. Specialist in catering.
Description
Catering te Herten bij Metsemakers Starmans. Specialist in catering en beschikbaar voor het vieren van alle belangrijke life-events.

Open Graph

url
https://www.metsemakers.nl/
title
Catering te Herten bij Metsemakers Starmans. Specialist in catering.
description
Catering te Herten bij Metsemakers Starmans. Specialist in catering en beschikbaar voor het vieren van alle belangrijke life-events.

Technology

Server
Apache
jQuery
1.7.2 known XSS (<3.5)
Stack
PHP
Analytics
  • Google Tag Manager
Ads
  • Meta Pixel

Third-party hosts loaded (3)

  • cdnnen.proxi.tools×25
  • connect.facebook.net×1
  • www.googletagmanager.com×1

Social

Contact

Email
Phone
Address
Schoolstraat 1, 6049BM, Herten, NL

DNS records live

NS
  • ns1.proximedia.com
  • ns2.proximedia.be
MX
  • 0 metsemakers-nl.mail.protection.outlook.com

Email authentication partial

SPF
v=spf1 include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=none; rua=mailto:dmarc@csdg.org
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

R12
from 2026-05-03 to 2026-08-01
Expires in 58 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.metsemakers.nl/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
geolocation=(), camera=(), microphone=(), payment=(), fullscreen=(self)
x-content-type-options
nosniff
content-security-policy
default-src * data: blob: filesystem: about: ws: wss: 'unsafe-inline' 'unsafe-eval'; script-src * data: blob: 'unsafe-inline' 'unsafe-eval'; connect-src * data: blob: 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src * data: blob: ; style-src * data: blob: 'unsafe-inline'; font-src * data: blob: 'unsafe-inline';
strict-transport-security
max-age=31536000;

Links to (3)

Linked from (1)