opgroeien.be

HTML metadata

Technology

CMS

Drupal

Analytics

• Google Tag Manager

Third-party hosts loaded (4)

• prod.widgets.burgerprofiel.vlaanderen.be×4
• cdn.jsdelivr.net×1
• unpkg.com×1
• www.googletagmanager.com×1

DNS records live

NS

• ns.opgroeien.be
• ns1.clf.proximus.be
• ns2.clf.proximus.be
• ns3.clf.proximus.be

MX

• 10 opgroeien-be.mail.protection.outlook.com

TXT

• have-i-been-pwned-verification=a97b66a055d326f7ffaeec8dccfdbf6f
• hibp-verify=dweb_1izpbwyugdjjn2s4j9retylt
• spf2.0/pra include:spf.flexmail.eu ?all

Verified for

• GlobalSign
• Google
• Microsoft 365

Email authentication strong

SPF

v=spf1 ip4:195.13.7.0/27 ip4:85.91.166.0/27 ip4:168.63.18.0/32 ip4:185.195.136.5/32 ip4:81.244.255.48/28 ip4:81.244.250.0/24 ip4:81.245.0.4 ip4:188.93.157.184/32 ip4:185.61.72.0/24 ip4:81.245.0.5 include:spf.protection.outlook.com include:servers.mcsv.net include:spf.fediap.be include:spf.secure-mail.be include:spf.flexmail.eu include:mail.zendesk.com include:email.bergop.net include:_spf.salesforce.com -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; rua=mailto:dmarc_agg@vali.email; ruf=mailto:postmaster@kindengezin.be; fo=1;

policy: quarantine

DKIM

Show 4 DKIM selectors

• selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDISiHVUq6OTMDsFKpyfYY06LcLghz4YEUJcIaWgffxzsHNbj+iMFr9OGOsOlrnls/kqW16lWNK7AZc+IvGmM…
• k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
• s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0KcFgb2yj/ICNhcLBSZ3Ji+euQhG5YhuJPN5NHl1eotMwXPBUeQx/K9Lp9xzg4Cu1BaUwpik1Txz51KOtZ…
• s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC/UD9lTyyoFQfxgDiECE8IYe1wRDsHxAa9dfYP4bbOqPP3aGbHG38/aMvNTt6PE5s+QS3AtzzBqTbdQ+KuWvvU+u…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.opgroeien.be/

present

• strict-transport-security
• content-security-policy
• x-frame-options
• x-content-type-options

findings

• CSP uses wildcard sources
• missing Referrer Policy
• missing Permissions Policy

Links to (4)

• huizenvanhetkind.be×1
• jeugdhulp.be×1
• kindengezin.be×1
• overkop.be×1

Linked from (7)

• stoptienerpooiers.be×1
• overkop.be×1
• kindengezin.be×1
• jeugdhulp.be×1
• huizenvanhetkind.be×1
• stopproxenetes-ados.be×1
• gams.be×1