DNS Gurus
Cached · just now
77/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Google Trust logo Google Trust

Certificate Information

Subject
CN=bloom-habit.site
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
April 29, 2026
Valid Until
July 28, 2026 83 days
Public Key
RSA 2048 bit Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E9:D3:EF:6E:6E:54:2E:11:54:C2:5B:86:72:14:34:F1:4F:11:B6:1D:E3:52:40:A9:17:1B:27:3C:35:FE:C4:E3
Alternative Names
100 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains
aytechsystem.com

Other domains in certificate

admissiontoaustralia.com.au
aicostlab.com
alexbenzer.com
apexmotion.in
skfitness.apithlete.com
atxmobilebraiding.com www.atxmobilebraiding.com
www.aurafinanzas.com.ar
automi.ai
agenda.axiu.ai
bloom-habit.site
capricorncapstone.com
caretakertransport.com
chenvy.com
circlethewagen.com
coffein.in www.coffein.in
app.collabnow.de
competify.app
app.copyhat.com
cureconcordia.org
danoaesthetics.vip
datanex.app
datean.co.uk
discordelite.com
www.diva.net.tr
drkiransdental.com
dumbassdetector.com
ecoswap.tw
edeasy.ai
errand.no
sleeppod.eventmaster.jobs
www.everyicon.xyz
exorciseyourex.com
auth.exposify.app
shaima.exthgen.ai
admin.faltudomain.xyz
fellowshipprayer.com
genzopia.com
dev.getfriday.ai
worker.link.gigsmart.ninja
hub.glintero.com
glowupcristao.com.br
golfeala.com
gomedialy.com
gongspacestudio.se
www.habl.app
www.haii.io
haybarro.es
auth.hec133.app
heroisdarmc.com.br
auth.hexlabs.org
huaqian.lat
www.incentivize.me
verse.inmagi.com
irondalebrewing.com
www.kamarmack.com
klb.lat
kunt.dk
www.laisi.autos
basketball.lcz.info
landscape.lentara.ai
rapor.letuxpharma.com
dev.macros.work
makeitpolite.app
shiftup-app.mountainhops.co.za
web.myjourneykit.app
novelsensors.com
vts.onlinevidyalaya.net
staging.oresalo.com
www.oussama-kheyar.de
patchmeifucan.com
inthegame.pdyn.app
www.pearlwagon.com
www.porticadebuilders.com
api.pagamento.portosegurofaz.com.br
www.quanticolabs.com.br
sales.rajbiosis.app
www.ranjannayak.in
recbytes.app
admin.reflex-drivers.live
www.rohanniggam.com
app.ronx.app
saay.app
minidashboard-staging.semy.app
www.shareat.net
google.shefpro.com
camponovodoparecis.bioponto.sistemasnemesis.com.br
smarterlifeapps.com
smjtech.buzz
www.strategicclaimsdirection.com
taitet.com
thewealthwise.app
www.tiroidesmanzana.com
utako-tune.jp
vektornorth.com
vikas2dx.com
www.wesselbuchling.com
www.wristedgames.com