indexo.dev

summitholdings.com

.com crawl

First seen 2026-04-25 · Last seen 2026-05-19 · ok HTTP/1.1 200 7346 ms crawled 2026-05-19

US · 172.64.148.186 · AS13335 Cloudflare, Inc.

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
Summit | Home – Summit
Description
Know the people who know workers' comp. More than 7,000 commercial agents and 31,000 policyholders across the South, Midwest, and Mid-Atlantic rely on Summit’s workers’ comp specialty. We learn your priorities and offer a customer experience based on long-term relationships and personal service.
Language
en-US
Canonical
https://www.summitholdings.com/site/
Feeds

Open Graph

url
https://www.summitholdings.com/site
title
Summit / Home
site name
Summit

Technology

CDN
Cloudflare
CMS
WordPress
Analytics
  • Google Tag Manager
Cookie consent
  • TrustArc
Fonts
  • Google Fonts

Third-party hosts loaded (4)

  • consent.trustarc.com×2
  • fonts.googleapis.com×2
  • fonts.gstatic.com×1
  • www.googletagmanager.com×1

Social

Contact

Phone

Registration

Registrar
CSC Corporate Domains, Inc.
Created
1998-08-17
Expires
2027-08-16 453 days left
Updated
2025-08-12
Name servers
  • pat.ns.cloudflare.com
  • ruben.ns.cloudflare.com

DNS records live

NS
  • pat.ns.cloudflare.com
  • ruben.ns.cloudflare.com
MX
  • 5 mx0a-001c9b01.pphosted.com
  • 5 mx0b-001c9b01.pphosted.com
TXT
Show 26 TXT records
  • globalsign-domain-verification=8DCD33C9D33B964A18E618E05337905D
  • google-gws-recovery-domain-verification=69153848
  • google-site-verification=Ktl_kaDuqDx_esgu7pOOmScQEquG8es5l6R4_c1P-OQ
  • google-site-verification=UtCLGdwn9Um_rkNjuciTFTXK1jhdw-JVP2tpvFPj-X0
  • hpe-greenlake-domain-verification=444a6158644f4e634170377974376a784152634d527973514d6c32445337614a
  • miro-verification=7541975d722a2a5633dc07fbd4fc7d5f8d29dd25
  • nDZYz3ZIAkkA77uXlOBlEI7tWlN5Lm78rzPEf1hTMPWoga2TmMfANkRYpQpxQNGPIPVPPR7IfqycRv86mQKOGA==
  • postman-domain-verification=e5e4ac60310ebfeab580b242f9cf366b6e5b14701b034b55df3bb20162ad73fd4179753858df38af3e3c8be488dfebfb7f9f3891665003479194ea9a21a77988
  • rovag_verification_token=B51CF8AD3BDD44AE97FFF27B4D410D62
  • v=msv1 t=27555B3A-4BC5-4B99-B2AF-FBD1342FB9A8
  • wrike-verification=NjIxMzUwNjowYmE3ZGQ1NTA1OWU2ZTNiNDk1OGMwNmE3MWY1NjVhMWJkYjU3ODdlZjUwYzExMDVhNjkwMzQ5ZGJkZjNmNzcx
  • Dynatrace-site-verification=0735a984-3b2d-46c8-bcf1-1389732ed51c__9q2cbfeeptornpp6o8g2ojoa5a
  • G^ML%Ix&K%1vWcH*YWG!*Y0EFof02mJoe1XGSOs$@LwSuAt8Tz^9J#ZbH^9NioRv^OQBm53YHW#n5D#8@h%d2TO#exuvpCxy7zZ
  • MS=ms29280061
  • NgoySFxt2JjLU6QoM9vVGbJZJOBNNVwqFs4Ja/QjFuLa+MNvyRLPmUprmkcG/uY4QiD1b7e2m1mjGH+43ZDXuA==
  • ZA=uIeVmH49ezqbym+SWUHPN6KblQOf+lyPvw6QVIjznak=
  • ZOOM_verify_MRGG3da9QhmImS7NWsEy0w
  • _2vceuxji1c4zyoieh02bmqfsenuax6q
  • adobe-idp-site-verification=2385258af7a9f297d8f876130db626d95a0ab6e83cbfd551eb3379000d0c4e69
  • anthropic-domain-verification-s3zbeh=aWJY4uPkmUXKBRt4tpKGmyX8J
  • docusign=36bbec0e-dd9c-4b85-bc73-4991d493b26b
  • docusign=7b1e4b4d-0989-49d5-84b6-65b7416efa52
  • flexera-domain-verification-cpydcsoizhfhfebe
  • globalsign-domain-verification=08f6245926bbd0c02ff96006cb503fe5
  • globalsign-domain-verification=2C2B82FEC03444153E4EBA9C42CED26B
  • globalsign-domain-verification=2bc607293f6ccce05c4add60bea513e4

Email authentication strong

SPF
v=spf1 ip4:208.65.199.70/32 ip4:208.65.194.99/32 ip4:148.163.156.193/32 ip4:148.163.158.190/32 include:spf.protection.outlook.com include:spf-001c9b03.pphosted.com include:spf-001c9b01.pphosted.com a:c.spf.service-now.com include:3c12fc.workshop-spf.net include:_spf.ultipro.com ~all
softfail (~all)
DMARC
v=DMARC1; p=reject; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com
policy: reject (enforced)
DKIM
  • dkim: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDDzpFrEAH9dbkLukLvwesHGWRDc+JCBkvzQYTpptOR+uz4brRd1V8VDPHPpQH7wRvNMhVh/LhTkPMBXtpJjeedqU2rfDl…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqKzExBa0tp8PNWZLrX8jexEXRYknoLkA/Sqdi7l0TOSdu+qdvEjJfsx3iXO0+F6vGFAU5W/dv2l2Fjss5k…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1rPLOOMhmwDc/gJKkF7HhoTTUNHGnu+rQSExNQi23Cg5bXJL3TfIIIUFuryidxWX0eiNQ/RSv26ZM4KCWP…
selectors probed

Certificate (current)

WE1
from 2026-03-26 to 2026-06-24
Expires in 36 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://www.summitholdings.com/site/

present
  • content-security-policy-report-only
  • x-content-type-options
  • referrer-policy
findings
  • missing HSTS
  • missing Content Security Policy
  • missing frame protection
  • missing Permissions Policy
Header values
referrer-policy
strict-origin
x-content-type-options
nosniff
content-security-policy-report-only
default-src 'self' *.summitholdings.com blob: *.quantummetric.com *.maze.co cdnjs.cloudflare.com d3e54v103j8qbb.cloudfront.net maps.googleapis.com player.vimeo.com vod-progressive.akamaized.net web-sandbox.pypestream.com web.pypestream.com www.google-analytics.com; script-src 'self' 'unsafe-inline' *.summitholdings.com *.quantummetric.com *.maze.co *.googletagmanager.com tagmanager.google.com d3e54v103j8qbb.cloudfront.net maps.googleapis.com unpkg.com web-sandbox.pypestream.com web.pypestream.com www.google-analytics.com; script-src-elem 'self' 'unsafe-inline' *.summitholdings.com *.instana.io *.quantummetric.com *.maze.co *.googletagmanager.com tagmanager.google.com ajax.googleapis.com d213nytzlt2v5a.cloudfront.net d3e54v103j8qbb.cloudfront.net maps.googleapis.com ssl.google-analytics.com unpkg.com web-sandbox.pypestream.com web.pypestream.com www.google-analytics.com consent.trustarc.com; style-src 'unsafe-inline' data: *.quantummetric.com *.maze.co *.googletagmanager.com tagmanager.

Links to (3)

Linked from (1)