indexo.dev

oosterpoortwoon.nl

.nl crawl

First seen 2026-05-21 · Last seen 2026-05-27 · ok HTTP/1.1 200 1849 ms crawled 2026-05-27

NL · 48.209.59.83 · AS8075 Microsoft Corporation

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Welkom - Oosterpoort
Description
Welkom
Language
nl

Open Graph

title
Welkom
description
Welkom

Technology

CDN
Azure Front Door
Server
nginx
CMS
Next.js
JS framework
Next.js

Social

Contact

Email
Phone

DNS records live

NS
  • nsauth1.bit.nl
  • nsauth2.bit.nl
  • nsauth3.bit.org
MX
  • 0 oosterpoortwoon-nl.mail.protection.outlook.com
TXT
Show 6 TXT records
  • Stichting Oosterpoort Wooncombinatie
  • amazonses:pyvaiW2aLvMbf0ek/MWhPxHUpiN/E3IYbZh638Y3v28=
  • _7ykzkfks7ec4qz9g7qyzrqni2i85x7e
  • 6TKY8fCBoU29LSaz7hcbTyJyMDDQOxIL
  • pv2wwj80m2cqn7ncpzytsmjfrdxgj0hx
  • 1UIrnv7v0UaRVxKYPQfQSxru/TwNPpn5Ui9AnaFuTsA=
Verified for
  • Microsoft 365

Email authentication partial

SPF
v=spf1 ip4:62.166.51.211 ip4:92.65.162.33 include:spf.topdesk.net include:spf.protection.outlook.com include:spf.postoffice.juist.nl include:spf.mailjet.com include:spf.email.nl.postex.com include:amazonses.com -all
strict (-all)
DMARC
v=DMARC1; p=none;
policy: none (monitoring only)
DKIM
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed

Certificate (current)

E8
from 2026-05-03 to 2026-08-01
Expires in 62 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://oosterpoortwoon.nl/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
  • cross-origin-resource-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' https://media.iris.databalk.app https://scripts.clarity.ms https://www.clarity.ms https://www.googletagmanager.com/gtag/js https://www.google-analytics.com/analytics.js https://www.googletagmanager.com https://consent.cookiebot.com https://consentcdn.cookiebot.com/ https://oc-cdn-public-eur.azureedge.net/livechatwidget/ https://*.readspeaker.com https://*.postex.com https://*.email-provider.eu https://*.tolkie.nl https://*.piwik.pro https://*.expoints.nl https://*.bbvms.com https://cdn.bluebillywig.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://*.contentsquare.net 'unsafe-eval'; style-src 'self' 'unsafe-inline' https://oc-cdn-public-eur.azureedge.net https://*.readspeaker.com https://*.postex.com https://*.postex-dev.com https://*.tolkie.nl https://fonts.googleapis.com https://cdn.jsdelivr.net https://*.expoints.nl; style-src-attr 'self' 'unsafe-inline'; img-src 'self' blob: data: https://imgct.cook
strict-transport-security
max-age=31536000; includeSubDomains; preload
cross-origin-opener-policy
same-origin-allow-popups
cross-origin-resource-policy
same-site

Links to (3)