zwartopwit.be

HTML metadata

Technology

Server

nginx

Analytics

• Google Tag Manager

Ads

• Google Ads
• Google Ads (DoubleClick)

Third-party hosts loaded (6)

• cdnjs.cloudflare.com×1
• dizzy.b-cdn.net×1
• googleads.g.doubleclick.net×1
• widget.trustpilot.com×1
• www.googleadservices.com×1
• www.googletagmanager.com×1

Social

• instagram

DNS records live

NS

• ns1.web16.unix-solutions.be
• ns2.web16.unix-solutions.be

MX

• 10 mx01.eu.mailspec.com
• 10 mx02.eu.mailspec.com

Email authentication partial

SPF

v=spf1 a mx ip4:188.118.14.160/28 ~all

softfail (~all)

DMARC

v=DMARC1; p=none; rua=mailto:2488545b@in.mailhardener.com

policy: none (monitoring only)

DKIM

• k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
• mail: v=DKIM1; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDBy0mlX3uDtwFQ6DJolA5rHWaYERArUjvVNlvt1RUiPK1kwBrFFvslAYSFiPvpu/l5M4eCPHG9BXkz1z3/k6hiFwZ78…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.zwartopwit.be/

present

• strict-transport-security
• content-security-policy
• x-frame-options
• x-content-type-options

findings

• CSP allows unsafe inline scripts/styles
• missing Referrer Policy
• missing Permissions Policy

Links to (3)

• trustpilot.com×1
• instagram.com×1
• enablejavascript.io×1

Linked from (3)

• klimaatfestivalantwerpen.be×1
• superdruk.be×1
• tijsjerevalk.com×1