indexo.dev

popcorn.nl

.nl crawl

First seen 2026-06-01 · Last seen 2026-06-03 · ok HTTP/1.1 200 1063 ms crawled 2026-06-03

BE · 87.238.164.97 · AS34762 Combell NV

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Popcorn.nl is dé online winkel voor popcorn, nachos en suikerspin
Description
popcorn.nl is de online winkel voor popcorn, popcorn benodigdheden en apparatuur. Je bestelt snel, veilig en makkelijk je popcorn voor bijvoorbeeld thuis op de bank, een feestje of om uit te delen.
Language
nl

Technology

Server
nginx
CMS
Gatsby
Analytics
  • Google Tag Manager

Third-party hosts loaded (4)

  • static.klaviyo.com×1
  • widget.thuiswinkel.org×1
  • www.googletagmanager.com×1
  • www.kiyoh.com×1

Contact

Phone

DNS records live

NS
  • ns1.combell.eu
  • ns3.combell.net
  • ns4.combell.net
MX
  • 0 popcorn-nl.mail.protection.outlook.com
Verified for
  • Microsoft 365

Email authentication partial

SPF
v=spf1 mx:popcorn.nl include:spf.jimmys.hypernode.io ip4:89.255.14.174 include:spf.protection.outlook.com ~all
softfail (~all)
DMARC
v=DMARC1; p=none;
policy: none (monitoring only)
DKIM
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed

Certificate (current)

Sectigo Public Server Authentication CA DV R36
from 2025-11-07 to 2026-12-07
Expires in 186 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 60/100 Checked live page: https://www.popcorn.nl/

present
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
font-src fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com www.paypalobjects.com data: *.googleapis.com *.cloudflare.com *.twitter.com *.twimg.com *.trustedshops.com *.hotjar.com *.thuiswinkel-cdn.org *.fontawesome.com https://fonts.bunny.net data: 'self' 'unsafe-inline'; form-action *.paypal.com *.twitter.com *.facebook.com 'self' 'unsafe-inline'; frame-ancestors www.gstatic.com * 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com player.vimeo.com https://www.google.com/recaptcha/ *.braintreegateway.com *.paypal.com google.com *.google.com www.google.com *.twitter.com *.kiyoh.com *.hotjar.com *.thuiswinkel-cdn.org jimmys.eu *.cookiebot.com js.mollie.com *.sendcloud.sc *.jsdelivr.net *.trustpilot.com *.weltpixel.com *.googletagmanager.com *.doubleclick.net *.typeform.com www.xtento.com 'self' 'unsafe-inline'; img-src assets.adobedtm.com *.omtrdc.net dpm.demdex.net cm.everesttech.net *.adobe.com widgets.magentocommerc

Links to (1)

Linked from (1)