DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=mathew-nyc.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 05, 2026
Valid Until
July 04, 2026 47 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BD:18:3B:39:90:4C:21:63:35:0C:73:5D:9D:BA:F5:B2:B9:4E:59:90:7E:6F:4E:3A:86:0C:FE:6C:F5:60:CD:4A
Alternative Names
89 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains
hispeednet.it *.hispeednet.it

Other domains in certificate

12towers.com *.12towers.com
35015.it *.35015.it
3dforum.it *.3dforum.it
3dtelevisione.it *.3dtelevisione.it
401k.it *.401k.it
cilarita.com *.cilarita.com
crowncharlotte.org *.crowncharlotte.org
dam3x.live *.dam3x.live
differs.it *.differs.it
digitalstrategist.it *.digitalstrategist.it
diramazione.it *.diramazione.it
dogshirt.it *.dogshirt.it
duecolori.it *.duecolori.it
eec-fr.com *.eec-fr.com
elephantchallenge.info *.elephantchallenge.info
energeticamente.it *.energeticamente.it
fatlosstreatment.life *.fatlosstreatment.life
goship.pro *.goship.pro
*.customer.kuroki-seizaisho.com kuroki-seizaisho.com *.kuroki-seizaisho.com *.mta-sts.kuroki-seizaisho.com *.random.kuroki-seizaisho.com
linkcards.bio *.linkcards.bio
lk21.bio *.lk21.bio
manning.bio *.manning.bio
*.dial-rec.mathew-nyc.com *.dl-courtwear.mathew-nyc.com *.laid-rec.mathew-nyc.com *.mathew-gal.mathew-nyc.com mathew-nyc.com *.mathew-nyc.com *.skywalking.mathew-nyc.com
meriden.it *.meriden.it
*.dev.mypepesico.com *.etoolspmf.mypepesico.com *.hst.mypepesico.com *.intra.mypepesico.com *.ite.mypepesico.com *.myidm.mypepesico.com mypepesico.com *.mypepesico.com *.qa.mypepesico.com *.uat.mypepesico.com *.ww1.mypepesico.com
opencommunication.it *.opencommunication.it
pint.it *.pint.it
*.m.sidiz-chair.com sidiz-chair.com *.sidiz-chair.com *.ww25.sidiz-chair.com *.ww38.sidiz-chair.com
sistemiinformativi.it *.sistemiinformativi.it
stiri.it *.stiri.it
streammaster.live *.streammaster.live
tahina.it *.tahina.it
teamaustralia.racing *.teamaustralia.racing *.ww38.teamaustralia.racing