DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=zonadiamond.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 05, 2026
Valid Until
May 06, 2026 73 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
64:BB:C8:23:C7:76:D0:9E:D1:15:7A:55:FB:BB:F1:0F:35:4A:E8:B5:0E:45:EE:3B:77:DD:BD:84:CE:61:41:FC
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
ehda.com *.ehda.com *.attregister.ehda.com *.ww16.ehda.com *.ww17.ehda.com

Other domains in certificate

alharamain.net *.alharamain.net *.preview.alharamain.net
dgms.in *.dgms.in *.dropbox.dgms.in
domlepen-zgh.click *.domlepen-zgh.click *.pop.domlepen-zgh.click *.random.domlepen-zgh.click
*.ciscoasa.epley.com *.cpcontacts.epley.com *.drvpn.epley.com epley.com *.epley.com *.orion.epley.com *.ww1.epley.com
*.api.finanzconsulting.com finanzconsulting.com *.finanzconsulting.com *.preview.finanzconsulting.com
*.attwww.normativa.com normativa.com *.normativa.com
*.mobile.steves-digicam.com *.public.steves-digicam.com steves-digicam.com *.steves-digicam.com
*.autodiscover.ucps.com *.gaggle.ucps.com *.k12.ucps.com *.kanaweb.ucps.com *.mdm.ucps.com ucps.com *.ucps.com *.vpn1.ucps.com *.web.ucps.com
vns723.top *.vns723.top
vns785.top *.vns785.top
voenrus7.top *.voenrus7.top
w67d9zdp.sbs *.w67d9zdp.sbs
wakiku.com *.wakiku.com
waterdamage-energyth.click *.waterdamage-energyth.click
weeden.it *.weeden.it
welding-companies-gr-pango.click *.welding-companies-gr-pango.click
wenda.it *.wenda.it
windscreen-us.com *.windscreen-us.com
workbooks.it *.workbooks.it
wsgc39.buzz *.wsgc39.buzz
xantia.it *.xantia.it
xn--9kqr09ail3a.com *.xn--9kqr09ail3a.com
xn--fctwm112btk7b.com *.xn--fctwm112btk7b.com
xn--ltrv32g2pc.com *.xn--ltrv32g2pc.com
xn--tkvp14g.com *.xn--tkvp14g.com
ykt56.top *.ykt56.top
yongkilat69.vip *.yongkilat69.vip
yvk.in *.yvk.in
yvo9og.buzz *.yvo9og.buzz
zeamldso.click *.zeamldso.click
zejmldso.click *.zejmldso.click
zonadiamond.com *.zonadiamond.com