indexo.dev

corcoran.com

.com crawl

First seen 2026-04-15 · Last seen 2026-05-11 · ok HTTP/1.1 200 2008 ms crawled 2026-05-09

US · 99.83.192.251 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
The Corcoran Group: Luxury International Real Estate
Description
Premier real estate company featuring thousands of luxury properties for sale/rent nationally & internationally. Search homes, condos, and townhouses now.
Language
en
Canonical
https://www.corcoran.com/

Technology

CDN
Amazon CloudFront
CMS
Next.js
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts
Third-party hosts loaded (9)
  • media-cloud.corcoranlabs.com×5
  • cdn.jsdelivr.net×3
  • fonts.googleapis.com×2
  • fonts.gstatic.com×2
  • maps.googleapis.com×2
  • maps.gstatic.com×2
  • media.umbraco.io×1
  • unpkg.com×1
  • www.googletagmanager.com×1

Contact

Email
Phone
Address
590 Madison Avenue, 10065, New York

Registration

Registrar
CSC Corporate Domains, Inc.
Created
1995-07-07
Expires
2026-07-06 48 days left
Updated
2024-05-13
Name servers
  • ns-1030.awsdns-00.org
  • ns-1860.awsdns-40.co.uk
  • ns-29.awsdns-03.com
  • ns-878.awsdns-45.net

DNS records live

NS
  • ns-1030.awsdns-00.org
  • ns-1860.awsdns-40.co.uk
  • ns-29.awsdns-03.com
  • ns-878.awsdns-45.net
MX
  • 10 usb-smtp-inbound-1.mimecast.com
  • 10 usb-smtp-inbound-2.mimecast.com
TXT
Show 18 TXT records
  • figma-domain-verification=8e41038ddcc46af1d42686e422fe4f54585903ba0dfa5d22b848d6d0e4498d2e-1741130393
  • mailerlite-domain-verification=7fd75cea8daa88f796f8f0628505c2e20cfa7d95
  • e2ma-verification=eshgb
  • atlassian-domain-verification=oL9DQZQ3SQzkzx6XwXlySYd+OMOrakMcIKjLmXA/UbC+3S6HPyfBhQWTX2K4wZmX
  • google-site-verification=MZRIuveaYIyU8nxFLhYDQzVtKnam-85j12FIMcR-ffQ
  • pardot1123293=ecf2bc49a70bdfa467755ae3185a323a627244521f28f19cf26379b075518315
  • monday-com-verification=Vzp9M9wkXo140C0DRYV7ojmHp1rlhcE3dD23D45ox_s
  • google-site-verification=P1rQ-gSxmKqyxbfkRBBRNWnj3jEvR1Gq_-WYZGAEzgU
  • formstack-domain-verification=3e80cc022d42e5d2536e096457b4339c
  • brevo-code:c216c3b840b703b792c77210ee4c1fd7
  • sending_domain1123293=7f5d0f055fd83ddc904972c516e1251f4b7c8eeda7c9409c42e396ecf7702641
  • google-site-verification=Lmbd9kWfr6-B6Qxo8186m6-NQtWQeWFCYZvcM0KSEtg
  • docusign=673b981a-a731-4816-a974-eaa289dde872
  • google-site-verification=O2huDGjhDZOvAtIg7m7nJ8IsbYzxqRByZtDk_a_kfL4
  • e2ma-verification=gtrbb
  • google-site-verification=vPPOWBs40VC3MEiWQIPkkU02Z_mFFQ2x6F_uKgRi8YQ
  • mLXw4jegGGJyL5ym5LXi+THpby1vUablEn0xiWL51DIkhFpIDwKMhJl+QAlZP3Kkf4XSxczpUWpAmeC4u0Ha0Q==
  • wiz-domain-verification=021785642dcef1775829343b57b7f9626bfbf7fd219d80a7bfd0f1651511f8e7

Email authentication strong

SPF
v=spf1 redirect=6zsd66e2._spf._d.mim.ec
no all qualifier
DMARC
v=DMARC1; p=reject; rua=mailto:41b3633887d3342@rep.dmarcanalyzer.com; ruf=mailto:41b3633887d3342@for.dmarcanalyzer.com; fo=1;
policy: reject (enforced)
DKIM
  • selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDuM8QODwVl/M19PGNZrkX15Lo1z+NdznpGhCR8nNP+rpRo92RqCnS3TfZUP3pP/N2DKmKOdvWG8JOiTWvVW/…
  • k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
  • mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8ApRAhv8xxy1vtf/gC46fKEKZZrYyOqJepuoqnE5nAfWXBItio6CbXxBBX2p4aGAClNNC4MAfHnat5u5W5…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0TQRNoTj690q9F2TxwYCKTvwQk/t6ojHkrBNSbLnnCpo85Z/5l+UwJQaZoOhXSm9b0UHa1rYXiwhOJgBGk…
  • smtpapi: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwf…
selectors probed

Certificate (current)

Trusted Secure Certificate Authority DV
from 2025-06-06 to 2026-07-02
Expires in 44 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.corcoran.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self' 'unsafe-inline'; img-src 'self' https://*.amplitude.com * data: blob: 'unsafe-inline'; object-src 'none'; base-uri 'self'; frame-src 'self' https://c1.adform.net https://sdk.locallogic.co https://pixel-sync.sitescout.com https://td.doubleclick.net https://player.vimeo.com https://consent-pref.trustarc.com https://youtube.com https://tour.vht.com https://my.matterport.com https://consent.trustarc.com https://stags.bluekai.com https://www.googletagmanager.com https://assets.adfenix.com https://www.waterlinesquare.com https://ct.pinterest.com https://static.criteo.net https://pixel.sitescout.com https://bid.g.doubleclick.net https://gum.criteo.com https://cdn.krxd.net https://6416709.fls.doubleclick.net https://checkout.stripe.com https://syndication.twitter.com https://platform.twitter.com https://view.ceros.com https://s7.addthis.com https://www.google.com https://www.youtube.com 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; media-src 'self' https://*.amplitud
strict-transport-security
max-age=31536000; includeSubDomains; preload;

Links to (4)

Linked from (11)