indexo.dev

vastgoedloket.be

.be crawl

First seen 2026-05-20 · Last seen 2026-05-29 · ok HTTP/1.1 200 1640 ms crawled 2026-05-27

NL · 23.97.224.11 · AS8075 Microsoft Corporation

Reputation 87/100 weak security headers no dmarc policy

Classifying

Technology

Server
Microsoft-IIS
jQuery
2.2.4 known XSS (<3.5)

Third-party hosts loaded (1)

  • ajax.googleapis.com×1

DNS records live

NS
  • ns1.combell.eu
  • ns3.combell.net
  • ns4.combell.net
MX
  • 0 vastgoedloket-be.mail.protection.outlook.com
Verified for
  • Google
  • Microsoft 365

Email authentication weak

SPF
v=spf1 include:spf.protection.outlook.com include:servers.mcsv.net ip4:23.97.230.36 include:smtp.freshdesk.com include:sendgrid.net -all
strict (-all)
DMARC
not published
DKIM
  • k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwhmD1FxqLojV5Q5Jv/LLGtU6C3gcGRO1t6+JT+X6bc+6aIzO+XIULdEbppBgTlUnXx/RbEt465Y3/LUs7O…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCug7CJMGgIWIVPEGp7CsJJ/jdHbgnY93Ls+FTlNlrCVLrbvEfws7s1G80hsmeWv5/QItHlzspkSLGvXAJQn0ayoV…
selectors probed

Certificate (current)

GeoTrust TLS RSA CA G1
from 2026-02-22 to 2026-08-23
Expires in 83 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://vastgoedloket.be/

findings
  • missing HSTS
  • missing Content Security Policy
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy

Linked from (2)