DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt Active incidents

Certificate Information

Subject
CN=lojaultrastore.com.br
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 06, 2026
Valid Until
August 04, 2026 45 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4A:01:5D:03:98:BF:C3:5C:B9:F6:65:C8:7D:17:BD:7B:5B:DC:DC:B3:3E:82:71:99:92:65:88:90:3F:AC:7E:85
Alternative Names
65 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

65 domains
geocching.com *.geocching.com *.ww25.geocching.com

Other domains in certificate

backbeat.live *.backbeat.live *.preview.backbeat.live *.ww38.backbeat.live
flavor.live *.flavor.live
*.artesaniaevamartos.galsinma.site *.artesmetalicas.galsinma.site *.begonafloresbejarano.galsinma.site *.carolinaferrero.galsinma.site *.casaruralelyayo.galsinma.site *.ceramicasolgacastillo.galsinma.site *.cristinamontalvo.galsinma.site *.davidjulianvelez.galsinma.site *.ecosdellozoya.galsinma.site *.elcampanario.galsinma.site galsinma.site *.galsinma.site *.gloria.galsinma.site *.indeleble.galsinma.site *.inmagestalt.galsinma.site *.jaramaanimacion.galsinma.site *.judith.galsinma.site *.lafraguadellobo.galsinma.site *.latejera.galsinma.site *.leticiareyero.galsinma.site *.lossecretosdelua.galsinma.site *.moda2palomitas.galsinma.site *.pati.galsinma.site *.patriciasendin.galsinma.site *.periplomarionetas.galsinma.site *.raquel.galsinma.site *.sara.galsinma.site *.sarapalacios.galsinma.site *.tresreales.galsinma.site *.troposcultura.galsinma.site *.twoatonceduo.galsinma.site *.victor-os.galsinma.site *.wabisabi.galsinma.site *.yogaecoaldea.galsinma.site
larke.me *.larke.me *.sab.larke.me
lojaultrastore.com.br *.lojaultrastore.com.br *.ns2.lojaultrastore.com.br
northstromrack.com *.northstromrack.com *.ww25.northstromrack.com *.ww38.northstromrack.com
*.api.voarwin.bet *.app.voarwin.bet *.bot.voarwin.bet *.channel.voarwin.bet *.dns.voarwin.bet *.mail.voarwin.bet *.promoter.voarwin.bet voarwin.bet *.voarwin.bet *.www.voarwin.bet
wojciechmarciniak.eu *.wojciechmarciniak.eu