DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=ombrestorenia.click
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 02, 2026
Valid Until
April 02, 2026 48 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7B:E5:C2:96:7C:04:A8:D9:89:C0:C0:36:82:E0:4F:1F:4C:27:8A:B8:E5:70:5B:88:1F:06:3E:92:34:1B:FD:AD
Alternative Names
75 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

75 domains
flickonestore.com *.flickonestore.com

Other domains in certificate

advancedreselling.com *.advancedreselling.com
basritv.com *.basritv.com
buybet.bet *.buybet.bet
capitalstove.xyz *.capitalstove.xyz *.flowiseai.capitalstove.xyz *.qa.capitalstove.xyz *.test.capitalstove.xyz *.ww25.capitalstove.xyz
gfotdaggnk.net *.gfotdaggnk.net
hdxgtbmfiy.net *.hdxgtbmfiy.net
helloubble.com *.helloubble.com
hillsplumbing.com.au *.hillsplumbing.com.au
ivlounge.au *.ivlounge.au
ixniaixetg.net *.ixniaixetg.net
jarvisai.tech *.jarvisai.tech
keshavcrafts.com *.keshavcrafts.com
midwestfantasyadventures.com *.midwestfantasyadventures.com
mouwagroap.com *.mouwagroap.com
mwoz.xyz *.mwoz.xyz
obeoften.com *.obeoften.com
oedaneous.com *.oedaneous.com
ombrestorenia.click *.ombrestorenia.click *.vs.ombrestorenia.click
orthauve.com *.orthauve.com
reklam-linki.com *.reklam-linki.com
relocate.au *.relocate.au
restorecord-verify-bot.click *.restorecord-verify-bot.click *.ww25.restorecord-verify-bot.click
*.dev.sagehandisoftonline.com.au sagehandisoftonline.com.au *.sagehandisoftonline.com.au *.ww25.sagehandisoftonline.com.au
shopglavon.com *.shopglavon.com
sonomasenioraccess.net *.sonomasenioraccess.net *.ww38.sonomasenioraccess.net
todocolombia10.co *.todocolombia10.co
*.78953.uhcheating.com uhcheating.com *.uhcheating.com
wecodify.live *.wecodify.live
wqgvahxygl.net *.wqgvahxygl.net
*.ww38.wwwpressdemocrat.com wwwpressdemocrat.com *.wwwpressdemocrat.com
xseppdowcp.net *.xseppdowcp.net