DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=ctriplay.com.br
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
June 01, 2026
Valid Until
August 30, 2026 85 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
95:E0:EA:8A:D5:7F:24:F7:42:FC:61:67:1E:4C:4D:89:8B:13:48:5A:E6:00:AD:02:03:0D:65:FA:95:38:25:DF
Alternative Names
89 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains
gsem.org *.gsem.org *.ffffffffffff.gsem.org *.ww25.gsem.org *.ww38.gsem.org

Other domains in certificate

aetnadenal.com *.aetnadenal.com *.m.aetnadenal.com *.test.aetnadenal.com *.ww25.aetnadenal.com
arielviews.com *.arielviews.com
bargainautos.com *.bargainautos.com *.ww16.bargainautos.com
ccotexture.com *.ccotexture.com *.ww25.ccotexture.com *.ww38.ccotexture.com
ctriplay.com.br *.ctriplay.com.br
*.13667.diauskunft.de *.16380.diauskunft.de *.16452.diauskunft.de diauskunft.de *.diauskunft.de *.frauenarztpraxis-kleemann.diauskunft.de *.hostmaster.diauskunft.de *.wp.diauskunft.de
*.api.fettuccia.it *.backend.fettuccia.it *.demo.fettuccia.it fettuccia.it *.fettuccia.it *.mail.fettuccia.it
*.gcgyms.goldcoastgyms.com.au goldcoastgyms.com.au *.goldcoastgyms.com.au *.nowukkaz.goldcoastgyms.com.au *.staging.goldcoastgyms.com.au *.transformationhaven.goldcoastgyms.com.au
gonokawa.org *.gonokawa.org *.www.gonokawa.org
*.demo.goto.fashion *.dev.goto.fashion goto.fashion *.goto.fashion *.m.goto.fashion *.members.goto.fashion
introduced.it *.introduced.it
jaquieetmichel.com *.jaquieetmichel.com
lesbiansgate.com *.lesbiansgate.com *.test.lesbiansgate.com
logicexplorers.com *.logicexplorers.com *.random.logicexplorers.com *.ww6.logicexplorers.com
*.random.replaceit.com replaceit.com *.replaceit.com *.ww25.replaceit.com
*.random.rizdarm.de rizdarm.de *.rizdarm.de *.ww38.rizdarm.de
roshade.co *.roshade.co *.ww16.roshade.co *.ww25.roshade.co *.ww38.roshade.co
tagyouwag.com *.tagyouwag.com *.ww25.tagyouwag.com
*.hostmaster.toyotaautoparts.com *.random.toyotaautoparts.com toyotaautoparts.com *.toyotaautoparts.com *.ww1.toyotaautoparts.com *.ww16.toyotaautoparts.com *.ww17.toyotaautoparts.com *.ww38.toyotaautoparts.com
xtremeinflatables.com.au *.xtremeinflatables.com.au
zaraitsolutions.com.au *.zaraitsolutions.com.au