DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=sloths.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 18, 2026
Valid Until
July 17, 2026 37 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
57:C3:99:EE:78:55:20:A0:B7:30:09:D1:AA:90:D7:2A:A6:39:CE:25:58:B1:D1:C1:76:75:73:FE:62:E0:2C:EF
Alternative Names
89 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains
intruders.it *.intruders.it *.autoconfig.intruders.it *.email.intruders.it *.mail.intruders.it *.owa.intruders.it *.rd.intruders.it *.remote.intruders.it *.tv.intruders.it *.www.intruders.it

Other domains in certificate

amc24.com *.amc24.com *.ww16.amc24.com *.ww25.amc24.com
*.2.apphomeforbests.com *.3.apphomeforbests.com *.4.apphomeforbests.com *.4j.apphomeforbests.com *.96786.apphomeforbests.com *.a.apphomeforbests.com *.abclocal.apphomeforbests.com *.about.apphomeforbests.com *.acf.apphomeforbests.com apphomeforbests.com *.apphomeforbests.com *.band.apphomeforbests.com *.n.apphomeforbests.com *.sasg.apphomeforbests.com
*.app.carpazo.com *.blog.carpazo.com carpazo.com *.carpazo.com
*.asp.crawleycvs.org *.assets.crawleycvs.org crawleycvs.org *.crawleycvs.org *.gslb.crawleycvs.org *.potaufeu.crawleycvs.org *.v2.crawleycvs.org *.www.crawleycvs.org
*.admin.daycity.it *.api.daycity.it *.autodiscover.daycity.it *.cpcontacts.daycity.it *.dashboard.daycity.it daycity.it *.daycity.it *.hostmaster.daycity.it *.stats.daycity.it *.webdisk.daycity.it *.webmail.daycity.it *.www.daycity.it
isoladelgransassoditalia.com *.isoladelgransassoditalia.com
leakube.net *.leakube.net *.ww25.leakube.net *.ww38.leakube.net
*.admin.mrclocks.com *.demo.mrclocks.com mrclocks.com *.mrclocks.com *.rvwglauozihelp.mrclocks.com
one-day-diaet.de *.one-day-diaet.de
onepiecetube.de *.onepiecetube.de *.random.onepiecetube.de *.ww1.onepiecetube.de *.ww25.onepiecetube.de *.ww38.onepiecetube.de
*.hostmaster.pusk.it pusk.it *.pusk.it *.remote.pusk.it *.ruwww.pusk.it *.summer.pusk.it
rubbermaidcommerical.com *.rubbermaidcommerical.com *.ww25.rubbermaidcommerical.com
*.f.sloths.com *.hate.sloths.com *.mail.sloths.com *.pathobiome.sloths.com sloths.com *.sloths.com
*.random.www-ag.de www-ag.de *.www-ag.de