wust.be

.be crawl

First seen 2026-05-11 · Last seen 2026-05-18 · ok HTTP/1.1 200 24777 ms crawled 2026-05-18

US · 13.107.246.67 · AS8075 Microsoft Corporation

Reputation 94/100 dmarc monitor-only

sector real estate type homepage

HTML metadata

Title

Wust - Le partenaire de votre project

Description

WUST est une entreprise générale de construction qui allie une expérience de 90 ans à une recherche constante du progrès et de l’innovation.

Language

Canonical

https://www.wust.be/fr

Translations

Open Graph

title: Wust - Le partenaire de votre project
description: WUST est une entreprise générale de construction qui allie une expérience de 90 ans à une recherche constante du progrès et de l’innovation.

Technology

CDN: Azure Front Door
CMS: Next.js

Analytics

Google Tag Manager

Cookie consent

OneTrust

Third-party hosts loaded (6)

a.storyblok.com×7
besix.getbynder.com×7
d2csxpduxe849s.cloudfront.net×2
www.googletagmanager.com×2
cdn.cookielaw.org×1
cookie-cdn.cookiepro.com×1

DNS records live

NS

nameserver1.win.be
nameserver2.win.be

MX

10 wust-be.mail.protection.outlook.com

TXT

Show 5 TXT records

cisco-ci-domain-verification=1b631a20599e113f6c59e1f2e00ad19933355a7354910379e9365d9ee7fb2b2
ms-domain-verification=073082a8-35c4-4c2d-9f15-eec34fb500ee
htei3NkIshYh2nUVUBku9Qu9SheyhNfW
MS=ms32615811
MS=FBA794E635F46B97D563869BB51FB5FE3421CA78

Email authentication partial

SPF

v=spf1 mx include:spf.win.be ip4:212.166.19.63 include:spf1.besix.com include:spf2.besix.com include:spf.mailjet.com include:amazonses.com include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1; p=none; rua=mailto:js0h7mvn@ag.eu.dmarcian.com; ruf=mailto:js0h7mvn@fr.eu.dmarcian.com; fo=1;

policy: none (monitoring only)

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzOd3K9AN+Km3zLoz8vwy14bJrtSQV9e1mctlwpd9r5lgvEtCemNRnvOxY608SY0tCj3iOAtDudP5g4…

selectors probed

Certificates

Loading certificate

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.wust.be/fr

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self' a.storyblok.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' cookie-cdn.cookiepro.com *.googleadservices.com googleadservices.com *.googleads.g.doubleclick.net googleads.g.doubleclick.net *.hotjar.com *.hotjar.io *.clarity.ms connect.facebook.net cdn.cookielaw.org consentcdn.cookiebot.com bat.bing.com consent.cookiebot.com googletagmanager.com app.storyblok.com ajax.googleapis.com privacyportal-eu-cdn.onetrust.com *.googletagmanager.com https://www.youtube.com/ maps.googleapis.com https://js.hsforms.net https://www.google.com https://www.gstatic.com *.vimeo.com https://snap.licdn.com; child-src 'self' data:; worker-src blob: 'self'; style-src 'self' fonts.googleapis.com *.googletagmanager.com 'unsafe-inline' privacyportal-eu-cdn.onetrust.com; font-src 'self' fonts.gstatic.com privacyportal-eu-cdn.onetrust.com fonts.googleapis.com data:; img-src 'self' a.storyblok.com data: *.googletagmanager.com maps.gstatic.com maps.googleapis.com *.cloudfront.net *.storychief.c
strict-transport-security: max-age=63072000; includeSubDomains; preload