DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=htkconsulting.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 09, 2026
Valid Until
August 07, 2026 62 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
97:93:A9:F6:9C:D8:5F:69:37:E7:6B:09:23:4D:8A:EE:0F:AD:00:82:E9:01:78:9E:B6:16:E5:5B:DC:6A:9E:C1
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
homelnstead.com *.homelnstead.com *.beta.homelnstead.com *.dev.homelnstead.com *.drupal.homelnstead.com *.sales.homelnstead.com *.secure.homelnstead.com *.shop.homelnstead.com *.start.homelnstead.com *.tv.homelnstead.com *.users.homelnstead.com *.ww16.homelnstead.com *.ww38.homelnstead.com

Other domains in certificate

*.b2b.badbreathsymptom.com badbreathsymptom.com *.badbreathsymptom.com *.dev.badbreathsymptom.com *.job.badbreathsymptom.com *.portal.badbreathsymptom.com *.random.badbreathsymptom.com *.v28.badbreathsymptom.com *.ww38.badbreathsymptom.com
cozygo.co *.cozygo.co
edutag.xyz *.edutag.xyz *.ww38.edutag.xyz
*.blog.gettingrandom.com *.cdn.gettingrandom.com *.com.gettingrandom.com *.geo.gettingrandom.com gettingrandom.com *.gettingrandom.com *.jenkins.gettingrandom.com *.m.gettingrandom.com *.users.gettingrandom.com *.ww16.gettingrandom.com *.ww17.gettingrandom.com
htkconsulting.com *.htkconsulting.com *.jobs.htkconsulting.com *.random.htkconsulting.com *.users.htkconsulting.com *.ww25.htkconsulting.com
*.dev.humblecrustpizzatruck.com humblecrustpizzatruck.com *.humblecrustpizzatruck.com *.superset.humblecrustpizzatruck.com *.testing.humblecrustpizzatruck.com *.users.humblecrustpizzatruck.com *.ww16.humblecrustpizzatruck.com *.ww17.humblecrustpizzatruck.com *.ww25.humblecrustpizzatruck.com
jujubecottage.com *.jujubecottage.com *.mx.jujubecottage.com *.random.jujubecottage.com *.tw.jujubecottage.com *.ww16.jujubecottage.com
*.jakarta.jurnalmedia.co jurnalmedia.co *.jurnalmedia.co *.medan.jurnalmedia.co *.surabaya.jurnalmedia.co
laviespaco.com *.laviespaco.com
maroosh.com.au *.maroosh.com.au *.ww25.maroosh.com.au
*.m.nanrenvlp1.com nanrenvlp1.com *.nanrenvlp1.com *.ww25.nanrenvlp1.com *.ww38.nanrenvlp1.com
nbclatenight.com *.nbclatenight.com *.ww25.nbclatenight.com *.ww38.nbclatenight.com
*.aaa.phonsri.shop *.bbb.phonsri.shop phonsri.shop *.phonsri.shop
*.autodiscover.shobusushihouse.com shobusushihouse.com *.shobusushihouse.com *.ww25.shobusushihouse.com
*.random.yeyepro1.xyz *.w12.yeyepro1.xyz yeyepro1.xyz *.yeyepro1.xyz