prinsesmaximacentrum.nl — domain check, WHOIS, DNS & reputation

HTML metadata

Title: Home
Language: nl

Open Graph

url: https://prinsesmaximacentrum.nl
title: Prinses Máxima Centrum voor kinderoncologie
description: Het Prinses Máxima Centrum is mede afhankelijk van donaties. Uw steun maakt het verschil in het leven van kinderen met kanker.

Technology

CMS: Next.js

Analytics

Google Tag Manager

Third-party hosts loaded (4)

prinses-maxima-centrum-prod-umbraco01.azurewebsites.net×5
consent.cookiefirst.com×1
translate.google.com×1
www.googletagmanager.com×1

Contact

Phone

088 972 72 72

DNS records live

NS

ns1.surfnet.nl
ns1.zurich.surf.net
ns2.surfnet.nl
ns3.surfnet.nl

MX

0 prinsesmaximacentrum-nl.v-v1.mx.microsoft

TXT

wTLCj98XQruUg4y2CeWzwAGC3sszQ3f7sf+WqW3S5kk=
TtrACYpmaIvmpBy/qcIfBVwIyiloY684TkLG/gwSctsOYToqWlbSgK79D2Nc4i46YZQOXKS45kPx4VTLDM6aAQ==
pexip-ms-tenant-domain-verification=118e1b10-6bb2-41fa-b3bf-26a469f0f850

Verified for

Adobe
Atlassian
Dynamics 365
Google
HARICA
Microsoft 365

Email authentication strong

SPF

v=spf1 ip4:80.84.235.70 ip4:143.121.241.18/31 ip4:143.121.241.20/30 ip4:104.130.122.76/32 ip4:89.221.190.15 ip6:2a01:111:f403:e20::/32 include:_spf.eu.messagegears.net include:spf.kpnwerkplek.com include:spf.protection.outlook.com include:spf.afas.online include:malengo.exception.mx include:_spf.zivver.com include:_spf.cobytes.email -all

strict (-all)

DMARC

v=DMARC1; p=reject; rua=mailto:security@prinsesmaximacentrum.nl,mailto:dmarc_agg@vali.email,mailto:beheerict@prinsesmaximacentrum.nl;

policy: reject (enforced)

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC5MuR2KpDrQrGwVnJd0ltgUvyAekkn1q2m/qI8J8c786FcDsK0C4GFMfMytreelxKOfX2EradUAB9hTq4Aa8…
selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDBD0bCFxsfONvU6IlkB8PpGTZ0oznO084CN+eXcoenEDOTpIybYQ3dPoB9Z0lCN/CFAh8zix+BxbTmSNW2wg…
k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificates

Loading certificate

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.prinsesmaximacentrum.nl/nl

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: no-referrer
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self' https://prinses-maxima-centrum-prod-umbraco01.azurewebsites.net https://www.google.com https://www.google-analytics.com ws://127.0.0.1:* https://*.google-analytics.com https://*.googletagmanager.com https://*.cookiefirst.com https://translate.google.com https://*.googleapis.com; script-src 'self' 'nonce-MDM5ZjY1ZjMtNDY0Ni00NTg1LTlkNzgtMzgzYWZmMmEzMDU1' 'strict-dynamic'; img-src 'self' blob: data: https://*.azurewebsites.net https://www.googletagmanager.com https://*.cookiefirst.com https://i.ytimg.com https://img.youtube.com https://vumbnail.com https://*.gstatic.com https://gstatic.com https://maps.googleapis.com https://mapsresources-pa.googleapis.com; style-src 'self' 'unsafe-inline' https://*.cookiefirst.com https://www.gstatic.com https://*.googleapis.com; font-src 'self' data: https://*.gstatic.com; object-src 'none'; base-uri 'self'; frame-src https://www.prinsesmaximacentrum.nl https://*.prinsesmaximacentrum.nl https://www.google.com https://www.youtube.com h
strict-transport-security: max-age=63072000; includeSubDomains; preload

Links to (1)

werkenbijprinsesmaximacentrum.nl×1

Linked from (2)

oncodeaccelerator.nl×1
oncodeinstitute.nl×1