indexo.dev

thuis.nl

.nl crawl

First seen 2026-05-21 · Last seen 2026-05-30 · ok HTTP/1.1 200 1615 ms crawled 2026-05-27

NL · 195.245.236.220 · AS47121 SenseMakers B.V.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Thuis.nl
Language
en

Technology

Server
Sensemakers
Analytics
  • Google Tag Manager

Third-party hosts loaded (2)

  • www.googletagmanager.com×3
  • analytics.sensemakers.nl×2

DNS records live

NS
  • ns1.sensemakers.com
  • ns2.sensemakers.com
  • ns3.sensemakers.com
MX
  • 0 thuis-nl.mail.protection.outlook.com
Verified for
  • Google
  • Microsoft 365

Email authentication partial

SPF
v=spf1 ip4:195.245.236.81 ip4:195.245.236.172 a:server01.callsense.nl include:spf.protection.outlook.com include:amazonses.com -all
strict (-all)
DMARC
v=DMARC1; p=none; pct=100; adkim=r; aspf=r
policy: none (monitoring only)
DKIM
  • mail: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC6prgDLIACeQS5hOBqI6iS4Y8qFi3mJkkUCFu+CRUIPpQXK3+Ra14w5C9jSM94W5zbnDHyki6vMcAsVDpfXK…
selectors probed

Certificate (current)

Sectigo Public Server Authentication CA EV R36
from 2026-03-23 to 2026-10-08
Expires in 130 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.thuis.nl/

present
  • strict-transport-security
  • content-security-policy-report-only
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • missing Content Security Policy
Header values
referrer-policy
origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
geolocation=(self), midi=(self), push=(self), sync-xhr=(self), microphone=(self), camera=(self), magnetometer=(self), gyroscope=(self), speaker=(self), vibrate=(self), fullscreen=(self), payment=(self), bluetooth=(self)
x-content-type-options
nosniff
strict-transport-security
max-age=16000000; includeSubDomains; preload;
content-security-policy-report-only
default-src 'self' 'unsafe-inline' 'unsafe-eval' *.thuis.nl *.camcammer.com *.sensemakers.com *.test.paysafe.com *.cloudflare.com *.exoclick.com cdn.pushcrew.com *.ingest.sentry.io *.paysafe.com *.google.com *.google.nl *.google.sr *.google.be *.google.gr *.google.fr *.google-analytics.com stats.g.doubleclick.net *.doubleclick.net *.slack-edge.com *.googletagmanager.com analytics.sensemakers.nl *.hotjar.com *.hotjar.io; connect-src 'self' 'unsafe-inline' 'unsafe-eval' wss://*.thuis.nl/ wss://*.sensemakers.com wss://ws.hotjar.com/ *.sensemakers.com stats.g.doubleclick.net *.ingest.sentry.io analytics.sensemakers.nl *.google.com *.google.nl *.google.sr *.google.be *.google.gr *.google.fr *.analytics.google.com stats.g.doubleclick.net *.hotjar.io *.hotjar.com *.test.paysafe.com *.paysafe.com *.thuis.nl *.google-analytics.com; img-src * 'self' data: https: blob: https; font-src * 'self' data:; report-uri https://analytics.sensemakers.nl/csp/

Linked from (3)