DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=havendrift.info
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 14, 2026
Valid Until
August 12, 2026 79 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
75:06:8B:2B:0D:36:D7:CC:62:32:85:A3:CD:1F:AC:2F:66:EA:4C:1E:52:DB:28:A5:40:A1:57:24:3A:DD:AD:2F
Alternative Names
88 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

88 domains
ff14note.com *.ff14note.com *.1deaa467-9363-44e7-a248-4630e4d6c9ae.ff14note.com *.beta.ff14note.com *.shop.ff14note.com

Other domains in certificate

*.a.althy.bargains althy.bargains *.althy.bargains
casinospirit.net *.casinospirit.net *.minuju.casinospirit.net
checkitanalytics.ai *.checkitanalytics.ai *.mail.checkitanalytics.ai
*.7ec7d63f-9073-4383-98ed-e5a1e89e5f5b.elekroworld.cz *.admin.elekroworld.cz *.analytics.elekroworld.cz *.app.elekroworld.cz *.as.elekroworld.cz *.astro.elekroworld.cz *.autodiscover.elekroworld.cz *.bb.elekroworld.cz *.bc96ec84-e5cb-47ec-a902-6a67c6c89f56.elekroworld.cz *.c.elekroworld.cz *.cabinet.elekroworld.cz *.cit.elekroworld.cz *.client.elekroworld.cz *.cloud.elekroworld.cz *.cms2.elekroworld.cz *.come89e5f5b.elekroworld.cz *.cool.elekroworld.cz *.dns8.elekroworld.cz elekroworld.cz *.elekroworld.cz *.email.elekroworld.cz *.hostmaster.elekroworld.cz *.mobil.elekroworld.cz *.staging.elekroworld.cz *.store.elekroworld.cz *.videos.elekroworld.cz *.ww.elekroworld.cz *.www.elekroworld.cz
*.a.havendrift.info havendrift.info *.havendrift.info
*.a.ilxlp.bargains ilxlp.bargains *.ilxlp.bargains
*.aa2pzv.kreativupwerktop.com kreativupwerktop.com *.kreativupwerktop.com
*.9sni.renewamplifyydiamond.info renewamplifyydiamond.info *.renewamplifyydiamond.info
*.a0bdhw.systemizevoiceformteam.info systemizevoiceformteam.info *.systemizevoiceformteam.info
*.a.teamnelem.com teamnelem.com *.teamnelem.com
*.9ev70s.techadvances.digital techadvances.digital *.techadvances.digital
*.4729521.uvwxyz.xyz *.analytics.uvwxyz.xyz *.bbs.uvwxyz.xyz *.d.uvwxyz.xyz *.dashboard.uvwxyz.xyz *.forum.uvwxyz.xyz *.hostmaster.uvwxyz.xyz *.ipv5.uvwxyz.xyz *.ipv6.uvwxyz.xyz *.ipv7.uvwxyz.xyz *.lpv6.uvwxyz.xyz *.mobile.uvwxyz.xyz *.mta-sts.uvwxyz.xyz *.office.uvwxyz.xyz *.secureaccess.uvwxyz.xyz *.superset.uvwxyz.xyz *.supersets.uvwxyz.xyz uvwxyz.xyz *.uvwxyz.xyz *.vip6.uvwxyz.xyz *.vpn.uvwxyz.xyz *.wildcard.uvwxyz.xyz *.ww1.uvwxyz.xyz *.ww38.uvwxyz.xyz *.www.uvwxyz.xyz