DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt Active incidents

Certificate Information

Subject
CN=realestatenz.au
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 15, 2026
Valid Until
July 14, 2026 62 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
75:D1:8E:FD:8D:86:74:BF:52:48:54:72:19:C3:ED:63:D7:EC:A2:DE:C7:F6:FD:95:AB:48:6B:B0:F3:43:D6:CA
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
stuffit.it *.stuffit.it *.app.stuffit.it *.dash.stuffit.it *.data.stuffit.it *.demo.stuffit.it *.dev.stuffit.it *.staging.stuffit.it *.superset.stuffit.it *.visual.stuffit.it

Other domains in certificate

admiral-xx-slots.xyz *.admiral-xx-slots.xyz *.app.admiral-xx-slots.xyz
*.0e9873a5-47a3-4573-b6c2-8e782cd85401.dreamlesleather.com *.8b32fabf-b75d-4a46-be99-dd40871183dd.dreamlesleather.com *.8b4d68bf-f65f-44f3-a18d-ea6c75710a3b.dreamlesleather.com *.a.dreamlesleather.com *.admin.dreamlesleather.com *.api.dreamlesleather.com *.cloud.dreamlesleather.com *.dev.dreamlesleather.com dreamlesleather.com *.dreamlesleather.com *.gitlab.dreamlesleather.com *.gqepkicwqrdemo.dreamlesleather.com *.hmdnzstaging.dreamlesleather.com *.kazan.dreamlesleather.com *.members.dreamlesleather.com *.rds.dreamlesleather.com *.staging.dreamlesleather.com *.test.dreamlesleather.com *.vpn.dreamlesleather.com *.whm.dreamlesleather.com
*.459163db-12d6-4b51-9080-3f09ec14d05e.electricbikes.in electricbikes.in *.electricbikes.in *.m.electricbikes.in
fcw.us *.fcw.us *.wildcard.fcw.us *.ww25.fcw.us
futebolcar.com *.futebolcar.com *.mx7.futebolcar.com *.ww25.futebolcar.com
*.11.he8.club *.14.he8.club *.15.he8.club *.16.he8.club *.17.he8.club *.18.he8.club *.19.he8.club *.1a.he8.club *.1b.he8.club *.1c.he8.club *.1d.he8.club *.1h.he8.club *.1i.he8.club *.1j.he8.club *.1l.he8.club *.1m.he8.club *.1o.he8.club *.1p.he8.club *.a2ef739-aef9-4706-b183-2fcfb700ed7c.he8.club *.admin.he8.club *.ap.he8.club *.app.he8.club *.assets.he8.club *.bitrix.he8.club *.demo.he8.club *.dev.he8.club *.ea2ef739-aef9-4706-b183-2fcfb700ed7c.he8.club *.git.he8.club *.h5.he8.club he8.club *.he8.club *.hostmaster.he8.club *.m.he8.club *.rjvi1d.he8.club *.test.he8.club *.w.he8.club *.wap.he8.club *.www.he8.club *.y.he8.club *.z.he8.club
markmarketer.com *.markmarketer.com *.pay.markmarketer.com
realestatenz.au *.realestatenz.au