DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=thepowershift.show
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 23, 2026
Valid Until
July 22, 2026 65 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
6D:EA:FC:11:2D:81:F4:D2:AF:26:75:89:CA:E0:14:49:63:5E:A2:11:58:DC:6A:E5:9A:45:B4:2C:D4:5D:F2:BD
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
lossfarewell.com *.lossfarewell.com *.api.lossfarewell.com *.demo.lossfarewell.com *.qa.lossfarewell.com *.v1.lossfarewell.com

Other domains in certificate

228424.cc *.228424.cc *.cc.228424.cc
almoviser.com *.almoviser.com *.cpcontacts.almoviser.com
billionaire.asia *.billionaire.asia *.insights-sandbox.billionaire.asia *.remote.billionaire.asia
erv-dinslakener-kobras.com *.erv-dinslakener-kobras.com
*.87ab5.ixlora.xyz *.b54zj.ixlora.xyz *.cnfr9.ixlora.xyz *.gjdvb.ixlora.xyz ixlora.xyz *.ixlora.xyz
moynulshah.com *.moynulshah.com
pckzmju288.vip *.pckzmju288.vip
*.admin.preferbtc.com *.api.preferbtc.com *.bot.preferbtc.com *.cloud.preferbtc.com *.dccd77e6-6a2f-4d2e-bc92-0b2c17ec4270.preferbtc.com *.fuvailem.preferbtc.com *.m.preferbtc.com preferbtc.com *.preferbtc.com *.rd.preferbtc.com *.rds.preferbtc.com *.rdweb.preferbtc.com *.staging.preferbtc.com *.stg.preferbtc.com *.test.preferbtc.com *.uat.preferbtc.com *.ygbsmqlt.preferbtc.com
*.app.psychesomatictherapy.com *.assets.psychesomatictherapy.com psychesomatictherapy.com *.psychesomatictherapy.com
royalbd.net *.royalbd.net *.webmail.royalbd.net *.ww25.royalbd.net *.ww38.royalbd.net
*.ac.senghao.com senghao.com *.senghao.com *.xm.senghao.com
*.autodiscover.tembakcacing.asia *.cpanel.tembakcacing.asia tembakcacing.asia *.tembakcacing.asia
*.0482ab5e-d9e9-4a41-908c-d3d64d219589.thepowershift.show *.admin.thepowershift.show *.api.thepowershift.show *.app.thepowershift.show *.assets.thepowershift.show *.babf00bf-0b8f-42ec-977e-fbf0839e8546.thepowershift.show *.beta.thepowershift.show *.dashboard.thepowershift.show *.demo.thepowershift.show *.dev.thepowershift.show *.ebqunassets.thepowershift.show *.hzvhbsecure.thepowershift.show *.mail.thepowershift.show *.mailer.thepowershift.show *.marketing.thepowershift.show *.members.thepowershift.show *.portal.thepowershift.show *.qa.thepowershift.show *.secure.thepowershift.show *.staging.thepowershift.show *.stg.thepowershift.show thepowershift.show *.thepowershift.show *.uat.thepowershift.show *.v1.thepowershift.show *.voronezh.thepowershift.show *.web.thepowershift.show *.zhsmlbeta.thepowershift.show