indexo.dev

newenergychallenge.com

.com crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 875 ms crawled 2026-05-18

NL · 85.10.129.109 · AS20857 Signet B.V.

Reputation 100/100

Classifying

HTML metadata

Title
New Energy Challenge | The competition for startups and scaleups in renewable energy
Description
The competition for entrepreneurs in new energy that offers participants expert coaching, valuable partnerships and serious funding.
Language
en-US
Canonical
https://newenergychallenge.com/

Open Graph

url
https://newenergychallenge.com/
title
New Energy Challenge
site name
New Energy Challenge
description
The competition for entrepreneurs in new energy that offers participants expert coaching, valuable partnerships and serious funding.

Technology

Server
nginx
CMS
WordPress

Social

Registration

Registrar
Register SPA
Created
2017-05-17
Expires
2027-05-17 362 days left
Updated
2026-05-18
Name servers
  • ns0.transip.net
  • ns1.transip.nl
  • ns2.transip.eu

DNS records live

NS
  • ns0.transip.net
  • ns1.transip.nl
  • ns2.transip.eu
MX
  • 10 mx.mailprotect.be
  • 20 mx.backup.mailprotect.be

Email authentication strong

SPF
v=spf1 include:spf.byte.nl -all
strict (-all)
DMARC
v=DMARC1; p=reject; rua=mailto:dmarcrua@newenergychallenge.nl
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

R12
from 2026-04-20 to 2026-07-19
Expires in 60 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://newenergychallenge.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
  • cross-origin-resource-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
geolocation=(), camera=(), microphone=(), payment=(), usb=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; img-src 'self' data: https: https://*.w.org https://*.gravatar.com https://*.ytimg.com https://*.wp.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https: blob: https://*.wp.com; style-src 'self' 'unsafe-inline' https: https://*.googleapis.com; font-src 'self' https: data: https://*.gstatic.com; connect-src 'self' https://*.wp.com wss://ws.hotjar.com https:; worker-src 'self' blob: https:; child-src 'self' blob:; frame-src 'self' https://*.googletagmanager.com https://*.snapchat.com https://youtube.com https://*.youtube.com https://youtube-nocookie.com https://*.youtube-nocookie.com https://*.google.com https://*.vimeo.com; frame-ancestors 'self' https://*.google.com; base-uri 'self'; media-src 'self' https:; manifest-src 'self'; form-action 'self'; object-src 'none';
strict-transport-security
max-age=15768000; includeSubDomains
cross-origin-opener-policy
same-origin
cross-origin-resource-policy
same-origin

Links to (2)

Linked from (1)