DNS Gurus
Cached · just now
78/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 62
AWS CloudFront logo AWS CloudFront Google Tag Manager logo Google Tag Manager Brightcove logo Brightcove Formulayt logo Formulayt Google Cloud Run logo Google Cloud Run Sift logo Sift Iterable logo Iterable AppNexus (Xandr) logo AppNexus (Xandr) Guideflow logo Guideflow Fullstory logo Fullstory Google Translate logo Google Translate Netlify logo Netlify Reddit logo Reddit Active incidents Webflow logo Webflow Midbound Cloud logo Midbound Cloud Yahoo logo Yahoo Forter logo Forter Liveramp logo Liveramp DocuSign logo DocuSign DigiCert logo DigiCert Google DoubleClick logo Google DoubleClick Google Analytics logo Google Analytics Microsoft Advertising logo Microsoft Advertising Google Conversion Tracking logo Google Conversion Tracking Arkose Labs logo Arkose Labs Knotch logo Knotch Mixpanel logo Mixpanel Google Cloud Storage logo Google Cloud Storage Google Static File Front End logo Google Static File Front End Yellow.ai logo Yellow.ai Google Fonts logo Google Fonts Twitter logo Twitter Qualtrics logo Qualtrics LinkedIn logo LinkedIn Contentful logo Contentful Inbenta logo Inbenta Influ2 logo Influ2 Drift logo Drift unpkg logo unpkg Google Search logo Google Search Demandbase logo Demandbase Facebook logo Facebook Amazon S3 logo Amazon S3 Sierra logo Sierra StackAdapt logo StackAdapt OneTrust logo OneTrust Adobe Fonts (Typekit) logo Adobe Fonts (Typekit) Cloudflare CDNJS logo Cloudflare CDNJS AWS logo AWS Active incidents Oracle Eloqua logo Oracle Eloqua Taboola logo Taboola SimplyCodes logo SimplyCodes Rubicon Project logo Rubicon Project TechTarget logo TechTarget Akamai logo Akamai Cloudflare Images logo Cloudflare Images YouTube logo YouTube The Trade Desk logo The Trade Desk Optimizely logo Optimizely Sentry logo Sentry jsDelivr logo jsDelivr Google Cloud logo Google Cloud

Certificate Information

Subject
UNKNOWN={:asn1_OPENTYPE, <<19, 2, 85, 83>>}, UNKNOWN={:asn1_OPENTYPE, <<19, 8, 68, 101, 108, 97, 119, 97, 114, 101>>}, UNKNOWN={:asn1_OPENTYPE, <<12, 20, 80, 114, 105, 118, 97, 116, 101, 32, 79, 114, 103, 97, 110, 105, 122, 97, 116, 105, 111, 110>>}, UNKNOWN=5711317, C=US, ST=California, L=San Francisco, O=DocuSign, Inc., CN=redirect.docusign.com
Issuer
C=US, O=DigiCert Inc, CN=DigiCert EV RSA CA G2
Valid From
March 31, 2026
Valid Until
September 16, 2026 129 days
Public Key
RSA 2048 bit Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5D:23:9C:19:EB:CB:6D:A0:DB:68:05:58:11:8C:AD:18:72:44:6E:7D:36:02:58:AD:B7:A7:8A:2E:C5:5D:79:CF
Alternative Names
74 domains

Security Configuration

TLS Protocols
TLS 1.2
Forward Secrecy
Limited (Check cipher configuration)
Warnings
  • TLS 1.3 is not supported (recommended)

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=31536000
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
AWS CloudFront logo
Basic
default-src; script-src; script-src-elem; +11 more Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports