indexo.dev

middendrenthevoorelkaar.nl

.nl crawl

First seen 2026-06-04 · Last seen 2026-06-04 · ok HTTP/1.1 200 805 ms crawled 2026-06-04

US · 104.21.70.113 · AS13335 Cloudflare, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Middendrenthevoorelkaar
Description
Op Middendrenthevoorelkaar vind je al het vrijwilligerswerk, doing good challenges én vrijwilligers in jouw buurt verzameld. Kom makkelijk met elkaar in contact!
Language
nl

Open Graph

ttl
822914
url
https://www.middendrenthevoorelkaar.nl/
title
[site_title]
locale
nl_NL
site name
Middendrenthevoorelkaar

Technology

CDN
Cloudflare
Analytics
  • Google Tag Manager

Third-party hosts loaded (2)

  • cdn.onesignal.com×1
  • www.googletagmanager.com×1

Social

DNS records live

NS
  • kellen.ns.cloudflare.com
  • nataly.ns.cloudflare.com
MX
  • 10 middendrenthevoorelkaar-nl.mail.protection.outlook.com
Verified for
  • Microsoft 365

Email authentication partial

SPF
v=spf1 a mx ip4:31.149.32.8 ip4:212.178.83.253 ip4:136.144.147.236 ip4:212.178.83.248 ip6:2a01:7c8:bb0d:65:5054:ff:fee4:fe9a include:relay.mailchannels.net include:spf.protection.outlook.com include:spf.mandrillapp.com -all
strict (-all)
DMARC
v=DMARC1; p=none;
policy: none (monitoring only)
DKIM
  • default: v=DKIM1; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPl146tcngGis9ld5Llqeon3vZA66wHHhovftj4HsUPhronH3i08gJuR3+HgBXfqzjAgC3Uk3LaS/p/Ulswi3NKbouC…
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtWuzoQe/guXGYYsYhdFeAR1BC07bramw/aaWnxK3/y+v1OORrEhNbAtK2w+eKwAehYXDE/7iM69bNM…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed

Certificate (current)

WE1
from 2026-04-06 to 2026-07-05
Expires in 31 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.middendrenthevoorelkaar.nl/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
accelerometer=(), camera=(), document-domain=(), fullscreen=(self), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), usb=(), sync-xhr=(self)
x-content-type-options
nosniff
content-security-policy
default-src 'self' data: ; script-src 'self' 'report-sample' 'unsafe-eval' 'unsafe-inline' *.cloudfront.net *.google-analytics.com ssl.google-analytics.com www.google.com www.googleadservices.com www.googleoptimize.com *.googletagmanager.com www.gstatic.com tagmanager.google.com maps.googleapis.com *.doubleclick.net connect.facebook.net *.landbot.io webchat.digitalcx.com *.hotjar.com cdnjs.cloudflare.com stackpath.bootstrapcdn.com cdn.jsdelivr.net code.jquery.com onesignal.com cdn.onesignal.com ads.creative-serving.com googleads.g.doubleclick.net *.monsido.com js-agent.newrelic.com bam.eu01.nr-data.net nonce-39206c20 ; style-src 'self' 'report-sample' blob: 'unsafe-inline' *.cloudfront.net fonts.googleapis.com cdn.jsdelivr.net onesignal.com cdn-images.mailchimp.com translate.googleapis.com *.landbot.io nonce-39206c20 ; img-src 'self' data: blob: ssl.gstatic.com www.gstatic.com *.google-analytics.com *.google.com *.google.nl *.google.de *.google.be *.g.doubleclick.net maps.gstatic.com *
strict-transport-security
max-age=63072000; includeSubDomains preload

Links to (9)

Linked from (1)