DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt Active incidents

Certificate Information

Subject
CN=bookcasepopcorn.com
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
June 02, 2026
Valid Until
August 31, 2026 73 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
06:D3:6E:E0:38:A7:86:6E:82:C0:FF:E4:A4:9C:F6:89:89:F1:BD:EA:3B:BE:BA:50:EA:3E:B5:76:A7:68:F4:7C
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
citiren.com *.citiren.com

Other domains in certificate

bookcasepopcorn.com *.bookcasepopcorn.com
bookgravityrail.com *.bookgravityrail.com
bootlegjupiter.site *.bootlegjupiter.site
buyaccount.io *.buyaccount.io
by26111.com *.by26111.com
by37333.com *.by37333.com
by38111.com *.by38111.com
by38333.com *.by38333.com
by88878.com *.by88878.com
c13f.cyou *.c13f.cyou
carbeau.org *.carbeau.org
caselawaq.com *.caselawaq.com
ccywa.cc *.ccywa.cc
cfwz.site *.cfwz.site
chooseschillerlegal.info *.chooseschillerlegal.info
eightcap-german.com *.eightcap-german.com
fencingdecoder.com *.fencingdecoder.com
gghh1.xyz *.gghh1.xyz
ggk8.xyz *.ggk8.xyz
hmrggdgenjrc.xyz *.hmrggdgenjrc.xyz
jxjfgy.com *.jxjfgy.com
live-tv-streaming-guide.site *.live-tv-streaming-guide.site
logidna.com *.logidna.com
mailwatersconsulting.com *.mailwatersconsulting.com
maxstakepayout.site *.maxstakepayout.site
mestuff.xyz *.mestuff.xyz
moveer.xyz *.moveer.xyz
musicuz.site *.musicuz.site
niskrtipharma.com *.niskrtipharma.com
nonauricular.com *.nonauricular.com
qibladrop.com *.qibladrop.com
realgamechangers.org *.realgamechangers.org
reviewusa.site *.reviewusa.site
schoonertimberwind.com *.schoonertimberwind.com
sirloinstik.site *.sirloinstik.site
theocritan.com *.theocritan.com
thunbergilene.com *.thunbergilene.com
thunderempire525.shop *.thunderempire525.shop
turkeymirror.com *.turkeymirror.com
vortexbin.com *.vortexbin.com
wowmazaplay.site *.wowmazaplay.site
xikia.my *.xikia.my
yjzwk.club *.yjzwk.club
yp8854.com *.yp8854.com