visittuscaloosa.com

.com crawl

First seen 2026-04-28 · Last seen 2026-05-18 · ok HTTP/1.1 200 1264 ms crawled 2026-05-06

US · 34.75.104.115 · AS396982 Google LLC

Reputation 97/100 dmarc monitor-only

Classifying

HTML metadata

Title

Home - Visit Tuscaloosa

Description

From lakeside adventures to iconic gamedays, explore all the ways Tuscaloosa makes memories. Find things to do, where to eat, and how to plan your trip.

Language

en-US

Generator

WordPress 6.9.4

Canonical

https://visittuscaloosa.com/

Feeds

Open Graph

url: https://visittuscaloosa.com/
title: Home - Visit Tuscaloosa
locale: en_US
site name: Visit Tuscaloosa
description: From lakeside adventures to iconic gamedays, explore all the ways Tuscaloosa makes memories. Find things to do, where to eat, and how to plan your trip.
updated time: 2026-04-23T10:41:08-05:00

Technology

CMS: WordPress

Third-party hosts loaded (1)

www.google.com×2

Social

Contact

Phone

Address

7th St. and 22th Ave. SE.Tuscaloosa, AL

Registration

Registrar

GoDaddy.com, LLC

Created

2006-02-06

Expires

2027-02-06 261 days left

Updated

2026-02-02

Name servers

ns15.domaincontrol.com
ns16.domaincontrol.com

DNS records live

NS

ns15.domaincontrol.com
ns16.domaincontrol.com

MX

0 mx1-us1.ppe-hosted.com
10 mx2-us1.ppe-hosted.com

TXT

ppe-7f51b4f7c0a868e44f8b7ad0a8b8ed9a5e02d587

Verified for

Microsoft 365

Email authentication strong

SPF

v=spf1 a:dispatch-us.ppe-hosted.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvzHIOdFyJwftfJVO18Z7YCIv/k3u0AUBdY+pez9kdpbNZk9DQefBocZoXUBQ4Hf8Qqd39fjgDLGiXdZZUV…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3vBmqwOTs1Y+w6v/OAFEiXqL1Hn6ObqNmUNMJalB5djV49eS9eWef2rWS9AQZtql/TL/390HSm3LdMTiQG…

selectors probed

Certificate (current)

from 2026-05-01 to 2026-07-30

Expires in 71 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://visittuscaloosa.com/

present

content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy: geolocation=(self), camera=(), microphone=(), payment=(), fullscreen=(self)
x-content-type-options: nosniff
content-security-policy: default-src *; script-src * 'unsafe-inline' 'unsafe-eval' https://www.googletagmanager.com https://www.google-analytics.com; style-src * 'unsafe-inline'; img-src * data:; font-src * data:; frame-ancestors *; worker-src 'self' blob:

Links to (16)

Linked from (2)

tuscco.com×2
therelationshipconference.com×1