indexo.dev

villainoosterhout.nl

.nl crawl

First seen 2026-05-31 · Last seen 2026-05-31 · ok HTTP/1.1 200 732 ms crawled 2026-06-01

NL · 31.7.0.208 · AS20847 Previder B.V.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Home
Language
nl
Canonical
https://villainoosterhout.nl/nl/home

Open Graph

url
https://villainoosterhout.nl/home
title
Home
site name
Oosterhout

Technology

PHP
8.3.31 security-only
Stack
Laravel

Third-party hosts loaded (2)

  • s3.k8s.shockmedia.nl×3
  • challenges.cloudflare.com×1

Social

Registration

Registrar
Internationale Domeinregistratie Nederland
Created
2021-11-24
Updated
2021-11-24
Name servers
  • ns1.transip.nl
  • ns0.transip.net
  • ns2.transip.eu

DNS records live

NS
  • ns0.transip.net
  • ns1.transip.nl
  • ns2.transip.eu
MX
  • 10 villainoosterhout.nl

Email authentication partial

SPF
v=spf1 ~all
softfail (~all)
DMARC
v=DMARC1; p=none;
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

R13
from 2026-05-18 to 2026-08-16
Expires in 72 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://villainoosterhout.nl/home

present
  • strict-transport-security
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
  • cross-origin-embedder-policy
  • cross-origin-resource-policy
findings
  • missing Content Security Policy
  • weak frame protection
Header values
referrer-policy
same-origin
x-frame-options
allow-from 'self' villainoosterhout.nl www.villainoosterhout.nl
permissions-policy
accelerometer=(self), ambient-light-sensor=(self), attribution-reporting=*, autoplay=(self), bluetooth=(self), browsing-topics=*, camera=(self), compute-pressure=(self), cross-origin-isolated=(self), display-capture=(self), document-domain=*, encrypted-media=(self), fullscreen=(self), gamepad=(self), geolocation=(self), gyroscope=(self), hid=(self), identity-credentials-get=(self), idle-detection=(self), local-fonts=(self), magnetometer=(self), microphone=(self), midi=(self), otp-credentials=(self), payment=(self), picture-in-picture=*, publickey-credentials-create=(self), publickey-credentials-get=(self), screen-wake-lock=(self), serial=(self), speaker-selection=(self), storage-access=*, usb=(self), web-share=(self), window-management=(self), xr-spatial-tracking=(self)
x-content-type-options
nosniff
strict-transport-security
max-age=31536000; includeSubDomains
cross-origin-opener-policy
unsafe-none
cross-origin-embedder-policy
unsafe-none
cross-origin-resource-policy
cross-origin

Links to (2)

Linked from (1)