shoefit.nl

.nl crawl

First seen 2026-05-28 · Last seen 2026-05-28 · ok HTTP/1.1 200 1172 ms crawled 2026-05-31

DE · 88.99.95.94 · AS24940 Hetzner Online GmbH

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title

Welkom bij Shoe-Fit | Het centrum voor uw (voet)problemen

Language

nl-NL

Generator

Divi v.4.27.6

Canonical

https://shoefit.nl/

Feeds

Technology

Server: nginx
CMS: WordPress
jQuery: 3.7.1

Fonts

Google Fonts

Third-party hosts loaded (1)

fonts.gstatic.com×1

Social

Contact

Email

info@shoefit.nlzoek

DNS records live

NS

ns1.server-88-99-95-94.da.direct
ns2.server-88-99-95-94.da.direct

MX

0 shoefit-nl.mail.protection.outlook.com

Email authentication strong

SPF

v=spf1 ip4:88.99.95.94 ip6:2a01:4f8:10a:1f8f:0:0:0:2 include:spf.protection.outlook.com include:_spf.mx-relay.com -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; sp=quarantine; rua=mailto:rua@shoefit.nl; ruf=mailto:ruf@shoefit.nl; rf=afrf; adkim=s; aspf=s; pct=100; ri=86400

policy: quarantine · sp=quarantine

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvLnQoFOOgmxoCOxIxzXhedw0CB8VvGb2A09AADVHbupXaVPxGNPjdoVV5zOqb4z17AK8hwAorbVQ6W…

selectors probed

Certificate (current)

from 2026-04-10 to 2026-07-09

Expires in 34 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 35/100 Checked live page: https://shoefit.nl/

present

permissions-policy

findings

missing HSTS
missing Content Security Policy
missing frame protection
missing content type protection
missing Referrer Policy

Header values

permissions-policy: private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")

Links to (2)

facebook.com×1
cookiedatabase.org×1

Linked from (1)

kinovea.org×1