sonenbreugel.nl — domain check, WHOIS, DNS & reputation

HTML metadata

Title: Home | Gemeente Son en Breugel
Language: nl
Generator: SIMsite powered by Drupal
Canonical: https://www.sonenbreugel.nl/

Open Graph

url: https://www.sonenbreugel.nl/
title: Home
locale: nl
site name: Gemeente Son en Breugel
updated time: 2026-05-20T18:36:19+02:00

Technology

CMS: Drupal
JS framework: Next.js

Third-party hosts loaded (3)

cuatro.sim-cdn.nl×64
fonts.bunny.net×1
sonenbreugel.logging.simanalytics.nl×1

Social

Contact

Phone

202604-05-2026

DNS records live

NS

ns1.dn-s.nl
ns2.dn-s.nl
ns3.dn-s.nl
ns4.dn-s.nl

MX

10 de-smtp-inbound-1.mimecast.com
10 de-smtp-inbound-2.mimecast.com

TXT

Show 8 TXT records

jf94413950drxbtxfdz1zx9kxcn09t6q
cv03rvv6fnr8jhf53v1xy5gw42045g3p
fe95edf7dc3f29f97b58c912826e44fb7e2e6b84ae445dfbf564e52f54a4b287
0baadf4da55e98a7491078575bfc29719bd9b8b77242854a23fddfaa463a4992
zd0brvghxfcqnrr51rmqb9m6xmknnlbr
wRm8TGYP4cG0nxX8439gIuMr0DKTFpfCV3RWxv4RTMxiXE46HeOOxfEczQaC5g6H/qfTMQt1/mDAOTtvyrXcdw==
autodesk-domain-verification=dYniOyNqXrhu4JVOtZLa
ShE92hKTYzb6QJxwJ+SIjNpFbhchMf1BLjVNQVCg7Ko=

Verified for

Google
Microsoft 365

Email authentication strong

SPF

v=spf1 redirect=6zhph2c6._spf._d.mim.ec

missing all

DMARC

v=DMARC1; p=reject; aspf=r; rua=mailto:dmarc@dienstdommelvallei.nl,mailto:rapportages@dmarc.ibdgemeenten.nl,mailto:f9bfc1c8ceae542@rep.dmarcanalyzer.com; ruf=mailto:dmarc@dienstdommelvallei.nl,mailto:f9bfc1c8ceae542@for.dmarcanalyzer.com;fo=1

policy: reject (enforced)

DKIM

default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6B3DDOnr8AUJwwjEgG6IpVklQn9XkYMH+6xoS/TzZZxc/eGIhjHfOY7c22a5hUwUB3lPMnUNBndAx2…
selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0FBK+Kd1z5jwmViN36nw6FpvDemlBNusieozbOYmMvJSgYrU/EQv4oMvTZn1VY1GmziK+ddxLo/rK2…
selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvHpGVnTwvFouC4Mu6wTjVeiXjJBOBoWa4Nm+ngG+AWxR2eah62QcwzdHjyRO+WECEo1P4OBlPbQrki…

selectors probed

Certificate (current)

Thawte TLS RSA CA G1

from 2025-10-10 to 2026-10-10

Expires in 131 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.sonenbreugel.nl/

present

strict-transport-security
content-security-policy
content-security-policy-report-only
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing Permissions Policy

Header values

referrer-policy: same-origin
x-content-type-options: nosniff
content-security-policy: default-src 'self'; img-src * data: 'unsafe-inline' blob:; style-src * 'unsafe-inline' blob:; font-src * data:; script-src * 'unsafe-inline' 'unsafe-eval'; connect-src *; form-action *; media-src *.readspeaker.com *.streamlock.net *.archieven.nl storage.googleapis.com scribit-pro-hosting.storage.googleapis.com scribit-pro.storage.googleapis.com app.talkjs.com *.bbvms.com *.cloudfront.net data: 'self' blob:; frame-src *; frame-ancestors 'self' https://*.polly.help; worker-src * 'unsafe-inline' blob:;
strict-transport-security: max-age=31536000
content-security-policy-report-only: default-src 'self'; img-src * data: blob:; style-src * 'unsafe-inline' blob: https://fonts.bunny.net; font-src 'self' data: https://fonts.bunny.net https://fonts.gstatic.com https://cuatro.sim-cdn.nl https://cuatro.sim-cdn-acceptatie.nl https://cuatro.sim-cdn-test.nl; script-src 'nonce-YWJhOGUzN2MtNmQ5NS00MTg4LTlhM2YtOGIwYzAwMjk4MGY4' 'strict-dynamic' 'report-sample'; connect-src *; form-action 'self'; media-src https://*.readspeaker.com https://*.streamlock.net https://storage.googleapis.com https://scribit-pro-hosting.storage.googleapis.com https://scribit-pro.storage.googleapis.com https://app.talkjs.com 'self' blob:; frame-src *; frame-ancestors 'self' https://*.polly.help; worker-src * 'unsafe-inline' blob:; report-uri /api/csp-report

Links to (6)

Linked from (1)

vrbzo.nl×1