indexo.dev

vecozo.nl

.nl crawl

First seen 2026-05-29 · Last seen 2026-05-31 · ok HTTP/1.1 200 486 ms crawled 2026-05-31

SE · 217.114.94.2 · AS30811 Optimizely AB

Reputation 100/100

Classifying

HTML metadata

Title
Van én voor de zorg | VECOZO
Description
VECOZO is hét communicatiepunt voor de zorg. Wij bieden een veilige, betrouwbare digitale omgeving waarin ketenpartijen gegevens kunnen uitwisselen.
Language
nl

Open Graph

url
https://www.vecozo.nl/
title
Van én voor de zorg | VECOZO
description
VECOZO is hét communicatiepunt voor de zorg. Wij bieden een veilige, betrouwbare digitale omgeving waarin ketenpartijen gegevens kunnen uitwisselen.

Technology

CDN
Cloudflare
CMS
Gatsby
ASP.NET
4.0.30319

Third-party hosts loaded (1)

  • dl.episerver.net×1

DNS records live

NS
  • a1-230.akam.net
  • a12-67.akam.net
  • a2-64.akam.net
  • a20-66.akam.net
  • a3-66.akam.net
  • a7-66.akam.net
MX
  • 0 vecozo-nl.k-v1.mx.microsoft
TXT
Show 4 TXT records
  • _d3ycs143dql2o4q5v7dcoc14icv3p5j
  • ic481G4Mb52ESPdAr2xM3QVW/0YtaqJg0Je3LWPhPSyMl7SP2QOow+AtSHc40ZVqxq8M8ilA3so2oYVSmLsiqQ==
  • QuoVadis=88e4aea4-efe4-41e0-a0f4-d8c245e25420
  • 8td02kgykytn3cj73bhn6k07p4kh6dd5
Verified for
  • Microsoft 365

Email authentication strong

SPF
v=spf1 include:spf.afas.online include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=reject; rua=mailto:aggrep@vecozo.nl; ruf=mailto:authfail@vecozo.nl; fo=1
policy: reject (enforced)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlaRsyPumQo0uYxSNo6j5TPXx8hFf73wmKg/dJQ7wQTK8HX3eqfTn10yrlpfhsN5S92HJDiXRWxcs0J…
  • selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwPQEeN0AgwhkfKOOAAbLt4wQvQM1c9Icp6NUXKW2RUbSWO/k8OlKVW4kUD9o6uAbZ3UdcTVNn7gJPP…
selectors probed

Certificate (current)

DigiCert G2 TLS EU RSA4096 SHA384 2022 CA1
from 2025-09-23 to 2026-09-23
Expires in 114 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://www.vecozo.nl/

present
  • strict-transport-security
  • content-security-policy
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing content type protection
  • missing Permissions Policy
Header values
referrer-policy
no-referrer-when-downgrade
content-security-policy
worker-src blob:; script-src 'self' *.unpkg.com *.matomo.cloud *.episerver.com *.cloudfront.net *.episerver.net *.googletagmanager.com *.googleadservices.com *.google-analytics.com *.google.com *.google.nl *.elitechnology.com *.licdn.com *.hotjar.com *.doubleclick.net *.linkedin.com *.azure.com *.vimeo.com *.youtube.com *.msecnd.net *.facebook.com *.facebook.net *.visualstudio.com *.jquery.com *.jsdelivr.net 'unsafe-eval' 'unsafe-inline'; img-src 'self' *.google.com *.google-analytics.com *.google.nl *.linkedin.com *.facebook.com googleads.g.doubleclick.net blob: https: data:; frame-ancestors 'self' *.vecozo.arlatest.nl *.vecozo.nl *.vimeo.com *.youtube.com; frame-src 'self' *.vecozo.arlatest.nl *.vecozo.nl *.youtube.com *.episerver.net *.google.com *.hotjar.com 'unsafe-inline'; font-src 'self' *.gstatic.com *.episerver.net *.cmtelecom.com *.hotjar.com *.myfonts.net *.elitechnology.com data:; style-src-elem 'self' *.episerver.net *.googleapis.com *.jsdelivr.net *.myfonts.net *.typekit
strict-transport-security
max-age=31536000; includeSubDomains; preload

Links to (3)

Linked from (1)