indexo.dev

wvdws.nl

.nl crawl

First seen 2026-05-29 · Last seen 2026-05-31 · ok HTTP/1.1 200 584 ms crawled 2026-05-31

NL · 85.158.207.188 · AS25151 Cyso Group B.V.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Home | Week Zonder Werkstress
Language
nl
Generator
Elvin 1.2.54
Canonical
https://www.wvdws.nl/

Open Graph

url
https://www.wvdws.nl/
title
Home
site name
Week van de Werkstress

Technology

Server
Apache
Social widgets
  • YouTube Embed

Third-party hosts loaded (2)

  • www.google.com×1
  • www.youtube.com×1

Contact

Email

Registration

Registrar
Realtime Register
Created
2021-08-25
Updated
2021-08-25
Name servers
  • ns1.sqr.nl
  • ns3.sqr.cloud
  • ns2.sqr.domains

DNS records live

NS
  • ns1.sqr.nl
  • ns2.sqr.domains
  • ns3.sqr.cloud
MX
  • 0 wvdws-nl.mail.protection.outlook.com
  • 10 mx1.antispam-login.net
  • 20 mx2.antispam-login.net
Verified for
  • Microsoft 365

Email authentication partial

SPF
v=spf1 include:spf.sqr.nl include:spf.flowmailer.net include:spf.protection.outlook.com include:_spf.salesforce.com include:_spf.exsilia.net -all
strict (-all)
DMARC
v=DMARC1; p=none; rua=mailto:dmarc@inbound.flowmailer.net; ruf=mailto:dmarc@inbound.flowmailer.net; fo=1
policy: none (monitoring only)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxSlDRyqoPgoC+vahT2tIXN3xEiLkTctP19yGMpwwikrOoe4Zkvk3A9nNPcOw1cKwnAWDaARdATHWE0…
selectors probed

Certificate (current)

PerfectSSL
from 2025-08-27 to 2026-09-18
Expires in 109 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.wvdws.nl/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
no-referrer-when-downgrade
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self' 'unsafe-inline';style-src 'self' 'unsafe-inline' fonts.googleapis.com tagmanager.google.com;font-src 'self' 'unsafe-inline' fonts.gstatic.com;script-src 'self' 'unsafe-inline' *.googletagmanager.com *.google-analytics.com *.hotjar.com 'unsafe-eval' *.licdn.com *.linkedin.com *.google.com *.gstatic.com *.youtube.com *.vimeo.com *.activehosted.com;img-src 'self' data: *.google-analytics.com *.ytimg.com *.twtest.nl *.vimeocdn.com *.linkedin.com;frame-src 'self' *.google.com *.hotjar.com *.youtube.com *.vimeo.com *.spotify.com;connect-src 'self' *.hotjar.com *.hotjar.io *.google-analytics.com *.googletagmanager.com
strict-transport-security
max-age=31536000; includeSubDomains

Links to (12)

Linked from (1)