indexo.dev

vailresorts.com

.com crawl

First seen 2026-04-13 · Last seen 2026-05-16 · ok HTTP/1.1 200 2682 ms crawled 2026-05-07

US · 141.193.213.11 · AS209242 Cloudflare London, LLC

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
Vail Resorts, Inc. - Vail Resorts
Description
Vail Resorts, Inc. is the premier mountain resort company in the world and a leader in luxury, destination-based travel at iconic locations.
Language
en-US
Canonical
https://www.vailresorts.com/

Open Graph

url
https://www.vailresorts.com/
title
Vail Resorts, Inc. - Vail Resorts
locale
en_US
site name
Vail Resorts
description
Vail Resorts, Inc. is the premier mountain resort company in the world and a leader in luxury, destination-based travel at iconic locations.

Technology

CDN
Cloudflare
CMS
WordPress
Analytics
  • Google Tag Manager

Third-party hosts loaded (3)

  • gmpg.org×1
  • transcend-cdn.com×1
  • www.googletagmanager.com×1

Social

Registration

Registrar
CSC Corporate Domains, Inc.
Created
1996-07-25
Expires
2026-07-24 66 days left
Updated
2025-07-20
Name servers
  • dns1.p03.nsone.net
  • dns2.p03.nsone.net
  • dns3.p03.nsone.net
  • dns4.p03.nsone.net

DNS records live

NS
  • dns1.p03.nsone.net
  • dns2.p03.nsone.net
  • dns3.p03.nsone.net
  • dns4.p03.nsone.net
MX
  • 10 mxa-00219202.gslb.pphosted.com
  • 10 mxb-00219202.gslb.pphosted.com
TXT
Show 28 TXT records
  • google-site-verification=jmv0jgb5qyXMGxVWNdWU_0WztOhQJNHFx3iOEjQH6SQ
  • google-site-verification=8p0n1hE6Rrg9_AJl12zcs0OOK8m4dIT5TpjRzOQRPyw
  • e2ma-verification=hcw
  • google-site-verification=0FPuwGmLL6vp1cA-wWPvtiaYK_5Qs4rh4FkVYzXxHWg
  • f921e912-cca2-4b6d-b17d-c8e264a1a6c5
  • e2ma-verification=b8hfb
  • atlassian-domain-verification=as4izeNuA2/JLQnJbtsPOrT/BuFXz2ThlO4axobaiNrcAFciE2JmbyFzXe0h1I/h
  • shopify-verification-code=W2HDzkVNjuktwF1XqHKhl7LxioVoTy
  • google-site-verification=Od24bD0SYbDXPXwxNNbYFcJ47z-BBL8gcyklA_MHrGw
  • onetrust-domain-verification=0bf1b072e3724cbeacdfc6775d709926
  • e2ma-verification=uvweb
  • have-i-been-pwned-verification=f99cccd3cda66231ee7a8e1431b4c11d
  • docusign=ccceb4d0-f13d-4648-b599-4359d7fbb512
  • _qw9usvk1kmjwwtk0b5ghfsxon7d84ts
  • docusign=f2a4b9fb-db96-47b0-88f6-6899736248e3
  • e2ma-verification=o4gfb
  • google-site-verification=O4X_vTGQqyu1Yhh-Um-EcWmgDRvSdUVm3q6hZH8_cp4
  • e2ma-verification=3preb
  • _jbo5mm5sf8gnyyucpa53ljgy7rw3izd
  • mgverify=426c427e66a825703c45d5564d6750f38b1fe258fccd4d536769139b8bb51a32
  • _h3q7yct48dh5y2xhsda28dzy0libt2i
  • Dynatrace-site-verification=3abca464-fb34-4f1d-9166-f851679004f2__a8urvktfb3ol9443lfcgls6lvi
  • e2ma-verification=s33cb
  • amazonses:QHBW7AdcRsoMWm88rqYM3l157ZDrCbC2NNYcEWlKDZw=
  • google-gws-recovery-domain-verification=51378326
  • e2ma-verification=3glfb
  • launchdarkly-domain-verification=1af1da02-e843-4223-9ed4-7920dd448039
  • apple-domain-verification=yFdHuknodyPXZ2xf

Email authentication strong

SPF
v=spf1 include:%{i}._ip.%{h}._ehlo.%{d}._spf.vali.email include:spf.synxis.com ~all
softfail (~all)
DMARC
v=DMARC1; p=quarantine; rua=mailto:dmarc_agg@vali.email,mailto:dmarc_agg@dmarc.250ok.net,mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_fr@dmarc.250ok.net,mailto:dmarc_ruf@emaildefense.proofpoint.com; fo=1
policy: quarantine
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqRc1ib88880zPvquC0/AtYju9pGktcPi4V9Z594WIj5sWug2H8tf1y3Di2GJSU8kX+a9YXHTleYBQ4…
  • selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2LNEWtM3OjQXA+y7Pu//fGR4Np5/st5AQn89KgNqUJ3MSb41siEg7786d1OySU7v/nSWkRwSLqLoLf…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6EahwxIrrJvACVLbrmeG9ZrTun3fiXHCELj4djOmavIHKUz8rjVkzREDrn1zM8a7OGWsRABuBwpgV87nKn…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCSAgs57DZ1ZJ9eAaLCJZ9+zprWppcGqGyNrAxlcW00Cq31a8sufzJ7kSCbXnoM26BxOnWz7ftiby0C1qjEKYRxOn…
  • smtpapi: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwf…
selectors probed

Certificate (current)

E8
from 2026-03-30 to 2026-06-28
Expires in 40 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 35/100 Checked live page: https://www.vailresorts.com/

present
  • permissions-policy
findings
  • missing HSTS
  • missing Content Security Policy
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
Header values
permissions-policy
private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")

Links to (46)

Linked from (50)