indexo.dev

thijssenmakelaardij.nl

.nl crawl

First seen 2026-05-27 · Last seen 2026-05-30 · ok HTTP/1.1 200 1083 ms crawled 2026-05-30

DE · 3.121.171.67 · AS16509 Amazon.com, Inc.

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
Makelaar Zaandam - Thijssen Makelaardij
Description
Op zoek naar een NVM makelaar? Thijssen Makelaardij verkoopt in Zaandam. Plan direct een gratis waardebepaling met onze makelaar in jouw buurt.
Language
nl
Canonical
https://www.thijssenmakelaardij.nl/Vestiging/80594/Zaandam.html

Open Graph

title
Makelaar Zaandam
description
Op zoek naar een NVM makelaar? Thijssen Makelaardij verkoopt in Zaandam. Plan direct een gratis waardebepaling met onze makelaar in jouw buurt.

Technology

jQuery
1.11.3 known XSS (<3.5)
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (6)

  • ajax.googleapis.com×2
  • cdnjs.cloudflare.com×2
  • fonts.googleapis.com×1
  • maps.google.com×1
  • www.google.com×1
  • www.googletagmanager.com×1

Social

Contact

Email
Phone

DNS records live

NS
  • ns0.transip.net
  • ns1.transip.nl
  • ns2.transip.eu
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
  • Thijssen Makelaardij
Verified for
  • Google
  • Microsoft 365

Email authentication strong

SPF
v=spf1 include:spf.thijssenmakelaardij.nl.eu-wzhnpjol.e1.dspf.app -all
strict (-all)
DMARC
v=DMARC1; p=reject; rua=mailto:wzhnpjol@rua.eu.dmarcmanager.app; ruf=mailto:wzhnpjol@ruf.eu.dmarcmanager.app
policy: reject (enforced)
DKIM
  • google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlOC0uPIvnXAIE1eZI4q/GdkShNC/H09ufWuAMfniWOSsHmmCmXYM7y/2VC/T/25QLJe5nSLhYwCPE1…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed

Certificate (current)

Amazon RSA 2048 M01
from 2025-12-07 to 2027-01-06
Expires in 219 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://thijssenmakelaardij.nl/

present
  • content-security-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
content-security-policy
default-src 'self' jsonip.com ai.enrise.com *.google-analytics.com *.googletagmanager.com tagmanager.google.com *.eye-move.nl tiaramedia1.eye-move.nl maxcdn.bootstrapcdn.com *.googleapis.com code.jquery.com gallery.mailchimp.com cdn-images.mailchimp.com mcusercontent.com cdnjs.cloudflare.com google.com www.google.com maps.google.com *.ggpht.com *.gstatic.com wurfl.io use.fontawesome.com opensource.keycdn.com via.placeholder.com www.interactievekavelkaart.nl cdn.rawgit.com vivantus.test hendriks.nl squeezely.tech *.squeezely.tech data: 'unsafe-inline' 'unsafe-eval' jsonip.com cdn.jsdelivr.net

Links to (15)

Linked from (7)