indexo.dev

vanburen.xyz

.xyz crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 3319 ms crawled 2026-05-19

US · 52.33.207.7 · AS16509 Amazon.com, Inc.

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
Stefan VanBuren
Description
Homepage of stefan.vanburen.xyz
Language
en
Generator
Hugo 0.160.1
Canonical
https://stefan.vanburen.xyz/
Feeds

Technology

CMS
Hugo

Social

Contact

Email

Registration

Registrar
Porkbun, LLC
Created
2020-05-17
Expires
2028-05-17 727 days left
Updated
2023-08-31
Name servers
  • curitiba.ns.porkbun.com
  • fortaleza.ns.porkbun.com
  • maceio.ns.porkbun.com
  • salvador.ns.porkbun.com

DNS records live

NS
  • curitiba.ns.porkbun.com
  • fortaleza.ns.porkbun.com
  • maceio.ns.porkbun.com
  • salvador.ns.porkbun.com
MX
  • 10 aspmx1.migadu.com
  • 20 aspmx2.migadu.com
TXT
  • hosted-email-verify=wgfep0hv

Email authentication strong

SPF
v=spf1 include:spf.migadu.com -all
strict (-all)
DMARC
v=DMARC1; p=quarantine;
policy: quarantine
DKIM
no key found at common selectors

Certificate (current)

R12
from 2026-05-01 to 2026-07-30
Expires in 71 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://stefan.vanburen.xyz

present
  • content-security-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
content-security-policy
default-src 'self' data: blob:; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; worker-src 'self' 'unsafe-eval' 'unsafe-inline' data: blob:; frame-src https:; img-src data: https:; media-src https:; object-src 'none'; sandbox allow-downloads allow-forms allow-modals allow-pointer-lock allow-popups allow-presentation allow-same-origin allow-scripts;

Links to (1)

Linked from (1)