indexo.dev

grandresidenceclub.com

.com crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 1569 ms crawled 2026-05-19

US · 66.22.15.204 · AS25773 RADWARE INC.

Reputation 100/100

Classifying

HTML metadata

Title
Grand Residence By Marriott - Home
Language
en

Technology

CMS
WordPress
jQuery
3.6.3
Cookie consent
  • OneTrust
Fonts
  • Google Fonts

Third-party hosts loaded (4)

  • fonts.googleapis.com×3
  • cdn.cookielaw.org×2
  • www.marriottvacationsworldwide.com×2
  • fonts.gstatic.com×1

Social

Contact

Phone

Registration

Registrar
CSC Corporate Domains, Inc.
Created
2001-08-23
Expires
2026-08-23 94 days left
Updated
2025-08-19
Name servers
  • dns1.mvwcns.com
  • dns2.mvwcns.com

DNS records live

NS
  • ns1.interval-intl.com
  • ns2.interval-intl.com
MX
  • 10 mxa-000a9401.gslb.pphosted.com
  • 20 mxb-000a9401.gslb.pphosted.com
TXT
Show 4 TXT records
  • N2bvRtLHr8rwoz+oDuVaQBulmQgAiz3/UIao3cUJn1QVn2Cc7Bji/+/GPV5P3FLSgesRKufyg1r/BNz95oB7vQ==
  • digi=4e8afaba4d1d4a2583793fa907217ea0
  • _3gu4wq3jehnrnog411dl2xb2ngjqquv
  • JUdyptjtSMmQ58RZcpZr2AOR1deII5jYrNio2t+Z1T88I4xCPLUUBf6oe8sOjWewBfPnwXwz7pKEXokXN0mIpw==
Verified for
  • Apple
  • Microsoft 365

Email authentication strong

SPF
v=spf1 include:spf-000a9401.pphosted.com include:_spf.salesforce.com include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1;p=quarantine;sp=quarantine;fo=0;ri=3600
policy: quarantine · sp=quarantine
DKIM
  • selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCzs0U7piQu84YWBmNhRQi/eq5GQmFtOXkpkDmVJAPgkgWA5dePPQ+nVFPlN2vQdzkAy0OsceUAInopQSumrR…
selectors probed

Certificate (current)

DigiCert Global G2 TLS RSA SHA256 2020 CA1
from 2025-08-14 to 2026-08-14
Expires in 85 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.grandresidenceclub.com/default.shtml

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
content-security-policy
default-src 'self' https: *.appcues.com *.appcues.net *.brightcove.net; connect-src 'self' https: wss://api.appcues.net *.demdex.net *.githubusercontent.com *.google-analytics.com *.eum-appdynamics.com *.appcues.com *.appcues.net *.brightcove.net; style-src 'self' https: 'unsafe-inline'; script-src 'self' https: 'unsafe-inline' 'unsafe-eval'; font-src 'self' https: 'unsafe-inline' *.appcues.com *.appcues.net *.brightcove.net; frame-src 'self' https: 'unsafe-inline'; img-src 'self' https: 'unsafe-inline'; object-src 'none';
strict-transport-security
max-age=31536000; includeSubDomains; preload

Links to (6)

Linked from (2)