indexo.dev

volkswagen.be

.be crawl

First seen 2026-05-20 · Last seen 2026-05-31 · ok HTTP/1.1 200 589 ms crawled 2026-05-27

US · 75.2.74.46 · AS16509 Amazon.com, Inc.

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Volkswagen | Modellen, Configurator en prijzen
Description
Welkom bij Volkswagen België. Ontdek onze elektrische auto's uit de ID-serie, SUV's, gezinsauto's en stadsauto's.
Language
nl
Canonical
https://www.volkswagen.be/nl.html
Translations
  • fr
  • nl

Open Graph

url
https://www.volkswagen.be/nl.html
title
Volkswagen | SUV, Gezinswagens, Elektrische, Breaks, Berlines
description
Welkom bij Volkswagen België. Ontdek vandaag ons uitgebreide gamma van elektrische wagens, SUV’s, gezinsauto’s en stadswagens.

Technology

CMS
Gatsby

Third-party hosts loaded (4)

  • assets.volkswagen.com×10
  • feature-services.vwonehub.io×1
  • smartsignals2.smart-digital-solutions.de×1
  • vw-tam.lighthouselabs.eu×1

Social

DNS records live

NS
  • ns1-07.azure-dns.com
  • ns2-07.azure-dns.net
  • ns3-07.azure-dns.org
  • ns4-07.azure-dns.info
MX
  • 10 volkswagen-be.mail.protection.outlook.com
Verified for
  • GlobalSign
  • Meta

Email authentication weak

SPF
v=spf1 mx ip4:193.53.128.0/19 include:spf.protection.outlook.com include:_spf.salesforce.com include:_spf.qualtrics.com ip4:193.53.139.60 ip4:193.53.139.180 ip4:193.53.139.181 ip4:193.53.139.61 include:spf.mailjet.com -all
strict (-all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

Amazon RSA 2048 M04
from 2025-07-15 to 2026-08-14
Expires in 74 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.volkswagen.be/nl.html

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
DENY
x-content-type-options
nosniff
content-security-policy
default-src https: 'unsafe-eval' 'unsafe-inline'; script-src https: 'unsafe-eval' 'unsafe-inline'; style-src https: 'unsafe-eval' 'unsafe-inline'; img-src https: data: blob: *; media-src https: data: blob: *; object-src 'none'; frame-ancestors 'none'; connect-src * data: blob: ; base-uri 'self'; upgrade-insecure-requests; font-src https: 'unsafe-inline' data: 'unsafe-inline'; worker-src * blob:;
strict-transport-security
max-age=31536000

Links to (11)

Linked from (6)