indexo.dev

moo.nl

.nl ok HTTP/1.1 200 906 ms

First seen 2026-06-18 · Last seen 2026-06-18 · crawled 2026-06-18

NL · 84.241.172.198 · AS20847 Previder B.V.

Reputation 100/100

sector other type homepage

HTML metadata

Title
COOL
Language
en

Technology

Server
Kestrel
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (4)

  • fonts.googleapis.com×1
  • fonts.gstatic.com×1
  • ssl.gstatic.com×1
  • www.googletagmanager.com×1

DNS records live

NS
  • nsauth1.introweb.nl
  • nsauth2.introweb.nl
  • nsauth3.introweb.net
MX
  • 10 moo-nl.mail.protection.outlook.com
  • 1000 ms37025872.msv1.invalid
Verified for
  • Atlassian
  • Google
  • Microsoft 365

Email authentication strong

SPF
not published
DMARC
v=DMARC1; p=reject; rua=mailto:dmarcfw@cloudwise.nl; ruf=mailto:dmarcfw@cloudwise.nl
policy: reject (enforced)
DKIM
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuwu9ThGm0i7daSoBUetNcaBArGlFr5sva+IP4QrFr7Hgr2vPwlZd6TlXijO9fnUHGhD/Lbszizhgja7h9l…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDMg5B2NAnXMILgTKe6arn41obC+R8E18wn1pWM99Nh1i+Q7jprUOMov1UigXLnT8IEMRdzUbqBzCaTM8svIEcdNL…
selectors probed

Certificate (current)

Sectigo Public Server Authentication CA DV R36
from 2026-01-12 to 2027-01-31
Expires in 224 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://apps.moo.nl/login/?CacheKey=baf5e8eb-e76e-4550-95ef-5670c8592d8e

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
findings
  • short HSTS max-age
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
no-referrer
x-frame-options
SAMEORIGIN
permissions-policy
fullscreen=(self "https://*.moo.nl"), microphone=(), camera=(self "https://*.moo.nl/login/qr-login"), display-capture=(), geolocation=(), web-share=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; font-src data: https://fonts.gstatic.com https://*.moo.nl; connect-src data: https://*.moo.nl https://*.launchdarkly.com https://*.mixpanel.com https://*.kennisnet.nl https://*.helpscout.net https://*.cloudfront.net https://*.google-analytics.com https://api.ipify.org wss://*.appcues.net wss://*.moo.nl https://*.appcues.com https://*.appcues.net https://*.nr-data.net https://*.blob.core.windows.net blob: https://openidconnect.googleapis.com; img-src blob: data: https:; style-src 'unsafe-inline' https://fonts.googleapis.com https://*.appcues.com https://*.moo.nl; script-src 'sha256-q0I5Ssn43AeRPrs34azfZZGpjdHIQsABixMB8wftxBA=' https://www.googletagmanager.com https://*.helpscout.net https://tagmanager.google.com mfe: 'nonce-v0HlqSF1d3BAJF7B7Sjjkw' https://*.moo.nl https://*.appcues.com https://*.google-analytics.com https://*.z6.web.core.windows.net https://*.newrelic.com 'sha256-EwHmekTNRdBtemaZCtcYMgRihteEekvBrGYY/b8R91s=' https://ssl.gstatic.com 'sha256-swm8OsBkKL
strict-transport-security
max-age=10368000; includeSubDomains
cross-origin-opener-policy
same-origin-allow-popups

Linked from (2)

Use this data via API

Everything on this page for moo.nl is available as JSON from the indexo.dev REST & MCP API.

curl "https://indexo.dev/api/v1/domains/moo.nl" \
  -H "X-API-Key: idx_..."

Read the docs & get a free key →

Add a badge to your site

Own moo.nl? Show it's tracked on indexo.dev and link visitors straight to this page.

indexo.dev — moo.nl

<a href="https://indexo.dev/moo.nl" target="_blank" rel="noopener">
  <img src="https://indexo.dev/moo.nl/badge.svg" alt="indexo.dev — moo.nl">
</a>