DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=2xy.org
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 03, 2026
Valid Until
July 02, 2026 36 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
81:4A:F3:D8:C5:90:28:3B:58:C5:3E:0B:54:82:CF:59:AE:CB:47:40:79:47:EC:AC:92:B5:D6:B4:A6:79:5B:FF
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
ladriatica.it *.ladriatica.it *.analyze.ladriatica.it *.api.ladriatica.it *.backend.ladriatica.it *.bi.ladriatica.it *.bigdata.ladriatica.it *.demo.ladriatica.it *.dev.ladriatica.it *.hostmaster.ladriatica.it *.metrics.ladriatica.it *.random.ladriatica.it *.remote.ladriatica.it *.reporting.ladriatica.it *.research.ladriatica.it *.staging.ladriatica.it

Other domains in certificate

2xy.org *.2xy.org *.4qg.2xy.org *.f8s.2xy.org *.random.2xy.org *.ww16.2xy.org *.www.2xy.org
alertspal.com *.alertspal.com *.ww25.alertspal.com
educationforensic.com *.educationforensic.com *.ww17.educationforensic.com *.ww38.educationforensic.com
educationstandards.au *.educationstandards.au *.ww17.educationstandards.au
emmikocheinfach.de *.emmikocheinfach.de
*.d86n12.hzxkj.cn hzxkj.cn *.hzxkj.cn *.j4hjz.hzxkj.cn *.ph8wco.hzxkj.cn *.store.hzxkj.cn
lightninginthebox.com *.lightninginthebox.com *.ww25.lightninginthebox.com
*.n9p.r6a.net *.qyy1g.r6a.net r6a.net *.r6a.net
sheemail.com *.sheemail.com *.ww25.sheemail.com *.ww38.sheemail.com *.xxd.sheemail.com *.xxx.sheemail.com
*.dh.skv.au *.random.skv.au skv.au *.skv.au *.wa.skv.au
socalprobono.org *.socalprobono.org *.ww31.socalprobono.org
*.and.that.school *.classes.that.school that.school *.that.school
*.ww25.xir.au *.ww38.xir.au xir.au *.xir.au
xn--feldhockeyschlger-3qb.de *.xn--feldhockeyschlger-3qb.de
xn--stiefelbnder-ncb.de *.xn--stiefelbnder-ncb.de
*.api.yetu.it *.app.yetu.it *.backend.yetu.it *.demo.yetu.it *.dev.yetu.it yetu.it *.yetu.it
*.img2.ymlp307.net *.root.ymlp307.net *.smtp.ymlp307.net *.t.ymlp307.net ymlp307.net *.ymlp307.net
*.ww38.yurbotax.com yurbotax.com *.yurbotax.com