indexo.dev

xpertclinics.nl

.nl crawl

First seen 2026-05-30 · Last seen 2026-05-31 · ok HTTP/1.1 200 473 ms crawled 2026-05-31

US · 216.150.1.1 · AS16509 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Gun jezelf de beste zorg | Xpert Clinics
Description
Met meer dan 40 vestigingen in Nederland helpen de specialisten van Xpert Clinics je snel, met zorg die volledig wordt vergoed.
Language
nl
Canonical
https://www.xpertclinics.nl
Translations
  • nl

Open Graph

url
https://www.xpertclinics.nl/nl
title
Gun jezelf de beste zorg | Xpert Clinics
site name
Xpert Clinics
description
Met meer dan 40 vestigingen in Nederland helpen de specialisten van Xpert Clinics je snel, met zorg die volledig wordt vergoed.

Technology

CDN
Vercel
CMS
Next.js
Cookie consent
  • Cookiebot

Third-party hosts loaded (1)

  • consent.cookiebot.com×1

Social

DNS records live

NS
  • ns1.sectigoweb.com
  • ns2.sectigoweb.com
  • ns3.sectigoweb.com
  • ns4.sectigoweb.com
MX
  • 0 xpertclinics-nl.mail.protection.outlook.com
Verified for
  • Apple
  • Google

Email authentication partial

SPF
v=spf1 include:spf1.xpertclinics.nl include:spf2.xpertclinics.nl ~all
softfail (~all)
DMARC
v=DMARC1; p=none; fo=1
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

R13
from 2026-05-25 to 2026-08-23
Expires in 83 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.xpertclinics.nl/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' *.xpertclinics.nl *.cookiebot.com *.facebook.net *.hotjar.com *.bing.com *.hs-scripts.com *.adform.net *.readpeak.com *.jsdelivr.net chatwidget-prod.web.app *.googletagmanager.com *.doubleclick.net *.hs-analytics.net *.hs-banner.com *.hsadspixel.net *.hubspot.com *.clarity.ms *.hsforms.net vercel.live snap.licdn.com; connect-src 'self' *.xpertclinics.nl *.cookiebot.com *.google.com *.google.nl *.hubapi.com *.bing.com *.bing.net *.hsappstatic.net *.clarity.ms *.doubleclick.net *.hubspot.com *.ipify.org *.hsforms.com hubspot-forms-static-embed-eu1.s3.amazonaws.com *.hotjar.io *.facebook.com *.googlesyndication.com px.ads.linkedin.com; style-src 'self' 'unsafe-inline' *.xpertclinics.nl chatwidget-css.web.app *.googleapis.com; font-src 'self' *.xpertclinics.nl *.gstatic.com; img-src 'self' data: *.xpertclinics.nl https://equipe.euwest01.umbraco.io *.cookiebot.com *.google.com *.google.nl *.googletagmanager.com *.facebook
strict-transport-security
max-age=63072000; includeSubDomains; preload

Links to (6)

Linked from (2)