DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=overallaquarium.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 10, 2026
Valid Until
July 09, 2026 67 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
2E:BC:65:E6:B7:C2:D6:86:CE:95:DC:50:AB:15:3F:81:95:72:80:0B:38:65:AE:76:ED:A9:30:A6:08:6E:24:C8
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
dotexcellence.com *.dotexcellence.com *.hostmaster.dotexcellence.com

Other domains in certificate

adisdas.de *.adisdas.de
farmday.com.au *.farmday.com.au
*.bi.fbgdc.com fbgdc.com *.fbgdc.com *.hostmaster.fbgdc.com *.pipeline.fbgdc.com *.website.fbgdc.com *.ws.fbgdc.com *.wss.fbgdc.com *.ww11.fbgdc.com *.ww12.fbgdc.com *.www.fbgdc.com
*.dc-635bdf7f1753.filedown.org filedown.org *.filedown.org *.ww38.filedown.org
overallaquarium.com *.overallaquarium.com *.ww25.overallaquarium.com
*.gov.ozsc.xyz ozsc.xyz *.ozsc.xyz *.um.ozsc.xyz *.www5b.ozsc.xyz
*.2022.picpicacg2022.top *.d.picpicacg2022.top picpicacg2022.top *.picpicacg2022.top
*.dns.pigalehotel.com *.hostmaster.pigalehotel.com *.mail.pigalehotel.com *.mx7.pigalehotel.com pigalehotel.com *.pigalehotel.com *.www.pigalehotel.com
*.hostmaster.positivpromotions.com *.jenkins.positivpromotions.com positivpromotions.com *.positivpromotions.com *.random.positivpromotions.com
*.m.rentmesseur.com *.pc.rentmesseur.com rentmesseur.com *.rentmesseur.com
*.dns.saphotrains.com *.hostmaster.saphotrains.com *.mx7.saphotrains.com saphotrains.com *.saphotrains.com
*.brutalarcade.spoofgames.com *.cpcontacts.spoofgames.com *.dev.spoofgames.com *.host.spoofgames.com *.mail.spoofgames.com *.ns1.spoofgames.com spoofgames.com *.spoofgames.com *.webdisk.spoofgames.com *.webmail.spoofgames.com *.ww38.spoofgames.com *.www.spoofgames.com
*.cpanel.syrianfacts.com *.mail.syrianfacts.com *.random.syrianfacts.com syrianfacts.com *.syrianfacts.com *.webdisk.syrianfacts.com *.webmail.syrianfacts.com *.ww7.syrianfacts.com *.www.syrianfacts.com
*.hex.talaria.cc talaria.cc *.talaria.cc *.web2.talaria.cc
*.sitemaps.verkadem.com verkadem.com *.verkadem.com
*.ww38.wwwmykplan.com wwwmykplan.com *.wwwmykplan.com
*.hostmaster.xn--rauchenaufhren-5pb.de *.mail.xn--rauchenaufhren-5pb.de xn--rauchenaufhren-5pb.de *.xn--rauchenaufhren-5pb.de