DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=travelmarket.it
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
June 04, 2026
Valid Until
September 02, 2026 82 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
6E:5E:F8:1C:3B:BF:4E:F2:FC:22:67:88:66:B6:BB:61:E3:FF:BB:4B:C0:18:93:B7:8C:AE:ED:48:72:B1:28:4D
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
chinayta.com *.chinayta.com *.admin.chinayta.com *.api.chinayta.com *.app.chinayta.com *.assets.chinayta.com *.c3a7118a-f858-4d98-8b0b-6759f0cd1a77.chinayta.com *.demo.chinayta.com *.dev.chinayta.com *.members.chinayta.com *.remote.chinayta.com *.shop.chinayta.com *.staging.chinayta.com *.t4w8lo.chinayta.com *.vllxnstaging.chinayta.com *.vpn.chinayta.com

Other domains in certificate

*.admin.bdbdt.club *.afhig.bdbdt.club *.aging.bdbdt.club *.api.bdbdt.club *.app.bdbdt.club *.assets.bdbdt.club *.b.bdbdt.club *.backup.bdbdt.club bdbdt.club *.bdbdt.club *.cegklzt.bdbdt.club *.ciztea.bdbdt.club *.cure.bdbdt.club *.dashboard.bdbdt.club *.demo.bdbdt.club *.dev.bdbdt.club *.g.bdbdt.club *.mail.bdbdt.club *.mailer.bdbdt.club *.marketing.bdbdt.club *.members.bdbdt.club *.qa.bdbdt.club *.safhig.bdbdt.club *.secure.bdbdt.club *.staging.bdbdt.club *.stg.bdbdt.club *.uat.bdbdt.club *.ulnpudemo.bdbdt.club *.v1.bdbdt.club *.v2.bdbdt.club *.w.bdbdt.club *.wcegklzt.bdbdt.club *.web.bdbdt.club *.www.bdbdt.club
*.admin.denverguide.org *.api.denverguide.org *.app.denverguide.org denverguide.org *.denverguide.org *.dev.denverguide.org *.ntzgbassets.denverguide.org *.test.denverguide.org *.www.denverguide.org
*.account.goldenbearmassage.com *.accounting.goldenbearmassage.com *.adm.goldenbearmassage.com *.admin.goldenbearmassage.com *.api.goldenbearmassage.com *.app.goldenbearmassage.com *.assets.goldenbearmassage.com *.auth.goldenbearmassage.com *.autoconfig.goldenbearmassage.com *.backend.goldenbearmassage.com *.cms.goldenbearmassage.com *.control.goldenbearmassage.com *.controlpanel.goldenbearmassage.com *.correo.goldenbearmassage.com *.dbadmin.goldenbearmassage.com *.demo.goldenbearmassage.com *.dev.goldenbearmassage.com *.ftp.goldenbearmassage.com goldenbearmassage.com *.goldenbearmassage.com *.ildcard.goldenbearmassage.com *.login.goldenbearmassage.com *.m.goldenbearmassage.com *.new.goldenbearmassage.com *.secure.goldenbearmassage.com *.server.goldenbearmassage.com *.shop.goldenbearmassage.com *.staging.goldenbearmassage.com *.test.goldenbearmassage.com
travelmarket.it *.travelmarket.it