hei-woningen.be

.be crawl

First seen 2026-05-31 · Last seen 2026-06-01 · ok HTTP/1.1 200 1055 ms crawled 2026-06-01

BE · 62.213.219.21 · AS8368 Dstny BE N.V.

Reputation 100/100

Classifying

HTML metadata

Title: Pluk je woongeluk | De Hei
Language: nl
Canonical: www.hei-woningen.be

Technology

Server: Microsoft-IIS
jQuery: 3.0.0 known XSS (<3.5)

Social widgets

Vimeo Embed

Third-party hosts loaded (5)

ajax.aspnetcdn.com×3
kit.fontawesome.com×1
maps.googleapis.com×1
player.vimeo.com×1
www.youtube.com×1

Social

Contact

Address: Leopold de Waelplaats 26, 2000, Antwerp, Belgium

DNS records live

NS

ns1.firstserved.net
ns2.firstserved.net
ns3.firstserved.net

Email authentication no MX

SPF: not published
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

R13

from 2026-05-21 to 2026-08-19

Expires in 77 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.hei-woningen.be/nl-be/pluk-je-woongeluk/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
weak frame protection

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN, SAMEORIGIN
permissions-policy: camera=(), geolocation=(), gyroscope=(),usb=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; connect-src *; font-src * data:; frame-src *; img-src * data:; media-src *; object-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';
strict-transport-security: max-age=31536000

Links to (6)

Linked from (2)

heizijde.be×1
vooruitzicht.be×1