DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=alwayswell.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 19, 2026
Valid Until
May 20, 2026 89 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
65:3D:7B:03:EE:02:3D:D7:67:1F:FC:38:B5:F4:3D:FC:A9:96:27:01:8A:47:BD:84:FF:FE:A1:26:C5:5E:3D:E0
Alternative Names
88 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

88 domains
alwayswell.com *.alwayswell.com *.cdn.alwayswell.com *.comune.alwayswell.com *.hostmaster.alwayswell.com *.mobile.alwayswell.com *.ww17.alwayswell.com *.www.alwayswell.com

Other domains in certificate

*.2707d4fd-e06f-430e-a9a9-4ba3a7300da2.blackinn.rent *.44d0ebd7-d6d6-4a2f-ab65-bfd4112d7e2f.blackinn.rent *.5a6df8d2-4baa-4a9a-8d88-40c24035ba16.blackinn.rent *.6cf273bd-dee5-4136-9ecf-bdefc362cfa9.blackinn.rent *.api.blackinn.rent *.app.blackinn.rent blackinn.rent *.blackinn.rent *.blog.blackinn.rent *.demo.blackinn.rent *.dev.blackinn.rent *.ftp.blackinn.rent *.liclliaauyapp.blackinn.rent *.shop.blackinn.rent *.smtp.blackinn.rent *.staging.blackinn.rent *.trail.blackinn.rent *.webdisk.blackinn.rent *.webmail.blackinn.rent *.ww12.blackinn.rent *.www.blackinn.rent
*.a.cgdstudio.com *.anyconnect.cgdstudio.com *.api.cgdstudio.com *.app.cgdstudio.com cgdstudio.com *.cgdstudio.com *.my.cgdstudio.com *.office.cgdstudio.com *.portal.cgdstudio.com *.secureaccess.cgdstudio.com *.sslvpn.cgdstudio.com *.vpn2.cgdstudio.com *.web.cgdstudio.com *.webconnect.cgdstudio.com *.webvpn.cgdstudio.com *.wildcard.cgdstudio.com
*.admin.nhqsi.net *.assets.nhqsi.net *.forecast.nhqsi.net *.hostmaster.nhqsi.net *.hs1.nhqsi.net nhqsi.net *.nhqsi.net *.vpn.nhqsi.net *.webmail.nhqsi.net
*.admin.qlys76.app *.app.qlys76.app *.blog.qlys76.app *.news.qlys76.app *.oixqyen.qlys76.app *.press.qlys76.app qlys76.app *.qlys76.app *.test.qlys76.app
*.babycare.villagenetbiz.com *.beauty.villagenetbiz.com *.cleaning.villagenetbiz.com *.clothing.villagenetbiz.com *.computer.villagenetbiz.com *.cooking.villagenetbiz.com *.cpanel.villagenetbiz.com *.cpcontacts.villagenetbiz.com *.craftsupplies.villagenetbiz.com *.food.villagenetbiz.com *.furniture.villagenetbiz.com *.gardening.villagenetbiz.com *.haircare.villagenetbiz.com *.homedecor.villagenetbiz.com *.massage.villagenetbiz.com *.mensgrooming.villagenetbiz.com *.mobiletechnology.villagenetbiz.com *.music.villagenetbiz.com *.personalcare.villagenetbiz.com *.photography.villagenetbiz.com villagenetbiz.com *.villagenetbiz.com *.weightloss.villagenetbiz.com *.weighttraining.villagenetbiz.com *.www.villagenetbiz.com