padi.com

HTML metadata

Title

PADI : Scuba Diving Courses, Certification & Ocean Conservation

Description

Try scuba diving. Learn to dive with PADI: Professional Association of Diving Instructors. PADI is the world's leading scuba diver training organization.

Language

en

Generator

Drupal 10 (https://www.drupal.org)

Canonical

https://www.padi.com/

Translations

ar-sa
de-de
en-us
es-es
fr-fr
it-it
ja-jp
ko-kr
nl-nl
pt-br
th-th
zh-cn
zh-hk

Open Graph

title: Professional Association of Diving Instructors | PADI
description: Try scuba diving. Learn to dive with PADI: Professional Association of Diving Instructors. PADI is the world's leading scuba diver training organization.

Technology

CDN: Cloudflare
CMS: Drupal

Analytics

Google Tag Manager

Cookie consent

TrustArc

Third-party hosts loaded (6)

www.padi.com.cn×13
www.padi.co.kr×12
consent.trustarc.com×2
www.googletagmanager.com×2
dev.visualwebsiteoptimizer.com×1
www.padi.com.tw×1

Social

Registration

Registrar

GoDaddy.com, LLC

Created

1995-03-14

Expires

2027-03-15 300 days left

Updated

2024-03-15

Name servers

ns-1083.awsdns-07.org
ns-1744.awsdns-26.co.uk
ns-485.awsdns-60.com
ns-731.awsdns-27.net

DNS records live

NS

ns-1083.awsdns-07.org
ns-1744.awsdns-26.co.uk
ns-485.awsdns-60.com
ns-731.awsdns-27.net

MX

10 padi-com.mail.protection.outlook.com

TXT

Show 15 TXT records

apple-domain-verification=VyJp8vNA7xo3KAxe
Foxit-domain-verification=98b2e0ee54dc05fed9d6158d8cceef0a
google-site-verification=jhUuv2hHSVf8JWejgPRwbjA142XMOWy6PEKcZLqdQfc
atlassian-domain-verification=zq/Z/Q0KYjHMvDQvOwsk35Ckr9aiiUroRpZFlisXlrUanFfqTT51aIlgysWKGko9
facebook-domain-verification=lt0vh8ntlk90jx0prai42ri3udgjhi
Pappmwi3WCZMhcLkh/qTZGUXw9THNfmuvD4cEhjqLvkavoaQyVTpcx7ExVd1oLq9Wer3cKu6J5ufLB9AQFWrtg==
google-site-verification=koy32wsvX4tiz26jpth-lLaQjM0YRFMDBwE45rGXwm0
google-site-verification=-r4_K9UgNc-X75RGx9weRRhnB7BNWonoC5z5V18ucYQ
facebook-domain-verification=3ypuwwhf00a8iej92r5a5b6i7e17sn
MS=4016C564BA2DB3CF387CF44C9E98CA50E4FEE144
slack-domain-verification=F2Lkh5iqdr4s9fiFFi4k2uszllp3Zw1qMYiQ7qAL
google-site-verification=z4tAtQLBNByJTz_Xe05JnZdDVtCYaAfv9LxrDNI2Kvo
google-site-verification=-2-C_lFWsMwiKmkymOUIiT0gxjcpasK7QKZyLEEUqhg
asv=73f4ae02d31489c5a4fbae22a91e2a84
google-site-verification=NNrf6v_r_km8wQ0ZADvGygW74f2mMeMigW-FRNCiK0E

Email authentication partial

SPF

v=spf1 ip4:12.165.253.4/32 ip4:51.222.252.12/32 ip4:27.33.60.26/32 ip4:213.121.245.96/28 include:_spf.salesforce.com include:amazonses.com include:spf.mandrillapp.com include:spf2.padi.com include:spf.protection.outlook.com a:outbound.birddogsw.com -all

strict (-all)

DMARC

v=DMARC1; p=none; rua=mailto:dmarc@padi.com;

policy: none (monitoring only)

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCDY1iMOXgwClEjcAbrFb5WDmE2aoHg1ZtO9aDCZopBBQZfPchoXbiv2WHe2wpxLvmpotIV1pojRgqRK+Nuyz…
k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…

selectors probed

Certificate (current)

DigiCert Global G2 TLS RSA SHA256 2020 CA1

from 2025-10-25 to 2026-11-13

Expires in 178 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.padi.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.hotjar.com *.padi.com *.scubadiving.com *.datadoghq-browser-agent.com *.g.doubleclick.net *.google.com *.googletagmanager.com *.googleadservices.com *.googlesyndication.com *.mountain.com fast.ssqt.io *.clarity.ms *.paypal.com *.paypalobjects.com *.venmo.com *.intercom.io *.impactcdn.com analytics.tiktok.com *.facebook.net data: blob: 'nonce-Py920NGCUBIWk9t9UELPAHF9AW34k1il'; script-src-elem 'self' 'unsafe-inline' *.padi.com *.scubadiving.com *.trustarc.com *.clarity.ms fast.ssqt.io *.google-analytics.com *.adtrafficquality.google *.g.doubleclick.net *.googleapis.com *.googletagmanager.com *.googlesyndication.com *.datadoghq-browser-agent.com dev.visualwebsiteoptimizer.com *.impactcdn.com *.hotjar.com *.mountain.com *.intercom.io *.intercomcdn.com www.youtube.com *.newrelic.com *.naver.net ssl.pstatic.net *.facebook.net cdnjs.cloudflare.com cdn.jsdelivr.net *.crowdriff.com *.braintreegateway.com *.paypal.com *.paypal
strict-transport-security: max-age=31536000