indexo.dev

mijnvsg.nl

.nl crawl

First seen 2026-05-23 · Last seen 2026-05-23 · ok HTTP/1.1 200 1594 ms crawled 2026-05-28

NL · 185.46.183.52 · AS60781 LeaseWeb Netherlands B.V.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Inloggen - Mijn VSG
Language
nl

Open Graph

url
https://www.mijnvsg.nl/inloggen-prs/standaard?url=%2f
title
Inloggen

Technology

CMS
Gatsby

Registration

Registrar
Realtime Register
Created
2017-02-27
Updated
2021-11-19
Name servers
  • lisa.neostrada.nl
  • christina.neostrada.nl
  • sandra.neostrada.nl

DNS records live

NS
  • christina.neostrada.nl
  • lisa.neostrada.nl
  • sandra.neostrada.nl
MX
  • 10 mail.mijnvsg.nl

Email authentication partial

SPF
v=spf1 a mx include:spf.totaalholding.nl ip4:185.56.144.183 -all
strict (-all)
DMARC
v=DMARC1; p=none;
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

E8
from 2026-04-21 to 2026-07-20
Expires in 45 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.mijnvsg.nl/login?url=%2f

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Permissions Policy
Header values
referrer-policy
same-origin
x-content-type-options
nosniff
content-security-policy
default-src * data: mediastream: blob: filesystem: about: ws: wss: 'unsafe-eval' 'wasm-unsafe-eval' 'unsafe-inline';script-src * data: blob: 'unsafe-inline' 'unsafe-eval';connect-src * data: blob: 'unsafe-inline';img-src * data: blob: 'unsafe-inline';frame-src * data: blob: ;style-src * data: blob: 'unsafe-inline';font-src * data: blob: 'unsafe-inline';frame-ancestors * data: blob: ;
strict-transport-security
max-age=31536000

Linked from (1)