DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=goldcoinmarkets.shop
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 07, 2026
Valid Until
August 05, 2026 78 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
46:2A:7E:BE:C3:11:F0:5D:84:10:59:77:B7:4C:51:AB:E2:39:8D:3B:D1:E6:5C:01:A0:BA:DC:82:F6:DF:0D:C5
Alternative Names
87 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

87 domains
state-farm.online *.state-farm.online *.emv1.state-farm.online *.gitlab.state-farm.online *.server.state-farm.online *.sitemap.state-farm.online *.ww25.state-farm.online *.ww38.state-farm.online

Other domains in certificate

apkgsstore.com *.apkgsstore.com *.m.apkgsstore.com *.wwww.apkgsstore.com
fmoviessite.xyz *.fmoviessite.xyz
goldcoinmarkets.shop *.goldcoinmarkets.shop *.sitemaps.goldcoinmarkets.shop
hizoslot777.com *.hizoslot777.com *.ww25.hizoslot777.com *.ww38.hizoslot777.com
huwptai0.com *.huwptai0.com *.images.huwptai0.com
immiproaustralia.com.au *.immiproaustralia.com.au *.login.immiproaustralia.com.au *.lp.immiproaustralia.com.au *.payments.immiproaustralia.com.au *.service.immiproaustralia.com.au *.ww25.immiproaustralia.com.au
iptvstream.store *.iptvstream.store
kamart.net *.kamart.net *.news.kamart.net *.ww25.kamart.net
kellymonro.club *.kellymonro.club *.portal.kellymonro.club *.wildcard.kellymonro.club
loppuunarr.bio *.loppuunarr.bio *.www.loppuunarr.bio
ochat.click *.ochat.click *.qgpncgo.ochat.click
ohomemfino-oficial.com.br *.ohomemfino-oficial.com.br
*.bi.randysautorepairdunn.biz *.m.randysautorepairdunn.biz randysautorepairdunn.biz *.randysautorepairdunn.biz *.sitemap.randysautorepairdunn.biz *.wildcard.randysautorepairdunn.biz *.ww1.randysautorepairdunn.biz
rubberasylum.com *.rubberasylum.com
seikodigitalwatches.com *.seikodigitalwatches.com *.ww25.seikodigitalwatches.com *.ww38.seikodigitalwatches.com
seteczki.pl *.seteczki.pl
*.cqbdri.superbiznow.com *.ffffffffffff.superbiznow.com *.fxh.superbiznow.com *.fxh5.superbiznow.com *.hbj.superbiznow.com *.idesign.superbiznow.com *.k.superbiznow.com *.mail.superbiznow.com *.mail4.superbiznow.com *.pay.superbiznow.com superbiznow.com *.superbiznow.com *.ww1.superbiznow.com *.ww12.superbiznow.com *.www.superbiznow.com *.zhujunhua.superbiznow.com
uneesports.xyz *.uneesports.xyz
*.25.xn--168-4nlzaq1f3d.com *.wildcard.xn--168-4nlzaq1f3d.com *.ww38.xn--168-4nlzaq1f3d.com xn--168-4nlzaq1f3d.com *.xn--168-4nlzaq1f3d.com