indexo.dev

tbtts.nl

.nl crawl

First seen 2026-05-27 · Last seen 2026-05-30 · ok HTTP/1.1 200 492 ms crawled 2026-05-30

NL · 88.211.147.180 · AS33915 Vodafone Libertel B.V.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Van Tilburg-Bastianen | Truck & Trailer service
Language
nl
Generator
Drupal 10 (https://www.drupal.org)
Canonical
https://www.tbtts.nl/

Technology

Server
nginx
CMS
Drupal
Analytics
  • Google Analytics
  • Google Tag Manager
Ads
  • Google Ads
  • Google Ads (DoubleClick)
Third-party hosts loaded (13)
  • www.googletagmanager.com×3
  • ajax.googleapis.com×2
  • dev.visualwebsiteoptimizer.com×2
  • googleads.g.doubleclick.net×2
  • js.intercomcdn.com×2
  • s.ytimg.com×2
  • widget.intercom.io×2
  • www.google-analytics.com×2
  • www.google.com×2
  • www.google.nl×2
  • www.googleadservices.com×2
  • www.youtube.com×2
  • browser.sentry-cdn.com×1

DNS records live

NS
  • ns1.sectigoweb.com
  • ns2.sectigoweb.com
  • ns3.sectigoweb.com
  • ns4.sectigoweb.com
MX
  • 0 tbtts-nl.mail.protection.outlook.com
TXT
  • oqOmtag7p22NjKEh9mvr/hfci4vEQ2yTiiWzVBSR6vAlmXcR8NfyGm51KOjflHJodayDVtJ9xb24RjI/uDvZqg==
  • oR1kdgK0OdRMnXSZqmM07fCpSPQViQqOR+LUl72iMewZkyxMYoXgC+68FBo1sg7qdEDm/K9R0FpE0VD5lKLZBQ==
Verified for
  • Google

Email authentication partial

SPF
v=spf1 mx a include:spf.mandrillapp.com include:spf.protection.outlook.com include:_senderspf.crc-online.nl include:spf.mihos.net include:143126937.spf01.hubspotemail.net ip4:80.252.95.8/32 ip4:88.211.147.131/32 ip4:88.211.147.137/32 -all
strict (-all)
DMARC
v=DMARC1; p=none;
policy: none (monitoring only)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsccHh633YnVdhD/cAEtWZ/F+hUxJuPXL6vE0cb5aHxF4upGtIxnbRLSITgVAdMQcrUZ6XoYHBlmgD0…
  • selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA68dPNvzvl1ACrt0Ct1uVaUHBre+YaLjA8dfzlSDNUTjXlIQxNdMf3gdRLLNtfm8cuLEuLnY/6NwvVQ…
selectors probed

Certificate (current)

R13
from 2026-04-25 to 2026-07-24
Expires in 53 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.tbtts.nl/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
no-referrer-when-downgrade
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.google.com https://*.googletagmanager.com https://*.google-analytics.com https://*.analytics.google.com https://*.g.doubleclick.net https://*.googleapis.com https://*.youtube.com https://*.youtube-nocookie.com https://*.cloudflare.com https://*.cloudflareinsights.com https://*.cookiebot.com https://cdn.jsdelivr.net https://*.vimeo.com https://browser.sentry-cdn.com https://widget-v3.smartsuppcdn.com https://www.gstatic.com https://www.smartsuppchat.com https://*.smartsupp.com wss://websocket-visitors.smartsupp.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.googletagmanager.com https://*.google-analytics.com https://*.cookiebot.com https://*.youtube.com https://*.bing.com https://*.salesfeed.com https://browser.sentry-cdn.com https://cdn.jsdelivr.net https://connect.facebook.net https://script.adcalls.nl https://widget-v3.smartsuppcdn.com https://*.smartsupp.com wss://websocket-visitors.smartsupp.com https://www
strict-transport-security
max-age=63072000; includeSubDomains; preload

Links to (8)

Linked from (1)