DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=faina.online
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 26, 2026
Valid Until
April 26, 2026 72 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
67:F4:53:E4:CE:6C:01:52:E4:E9:59:90:05:A3:7B:DF:40:4E:1B:59:C2:A3:97:A8:3B:AE:B4:3A:27:7C:67:D8
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
lockmachine.com *.lockmachine.com

Other domains in certificate

0mag.cc *.0mag.cc *.flow.0mag.cc *.ww25.0mag.cc
2plumbers.us *.2plumbers.us *.ww38.2plumbers.us
blushwoodtreeberries.com *.blushwoodtreeberries.com *.random.blushwoodtreeberries.com
dotira.com *.dotira.com *.hostmaster.dotira.com
faina.online *.faina.online *.mail.faina.online *.webmail.faina.online
*.360.franklinconvey.com *.assessments.franklinconvey.com franklinconvey.com *.franklinconvey.com *.msb.franklinconvey.com
gynj.com *.gynj.com
hardgaytwinkclips.com *.hardgaytwinkclips.com
leia.au *.leia.au *.random.leia.au *.ww25.leia.au
lenssaver.com *.lenssaver.com
*.9tv3yb34ehiuinm3.medicalbooks.online *.cpanel.medicalbooks.online *.cpcontacts.medicalbooks.online medicalbooks.online *.medicalbooks.online *.random.medicalbooks.online *.website.medicalbooks.online *.wildcard.medicalbooks.online *.ww25.medicalbooks.online *.www.medicalbooks.online
meinesbk.org *.meinesbk.org *.www.meinesbk.org
metaltiles.com *.metaltiles.com
*.flowforce.rescueme.store *.paramount.rescueme.store *.pestcontrol.rescueme.store *.puravive.rescueme.store *.rentownhome.rescueme.store rescueme.store *.rescueme.store *.tonicgreens.rescueme.store *.topcoupon.rescueme.store
*.hostmaster.stolidus.com stolidus.com *.stolidus.com
taxidriver.com.au *.taxidriver.com.au
*.random.tjx777.com tjx777.com *.tjx777.com
*.random.trainline.au trainline.au *.trainline.au
valuehighend.com *.valuehighend.com
winson.store *.winson.store
*.demo.xn--liwki-tcb.pl *.dev.xn--liwki-tcb.pl *.hostmaster.xn--liwki-tcb.pl *.magento.xn--liwki-tcb.pl *.old.xn--liwki-tcb.pl *.staging.xn--liwki-tcb.pl *.store.xn--liwki-tcb.pl *.test.xn--liwki-tcb.pl *.www.xn--liwki-tcb.pl xn--liwki-tcb.pl *.xn--liwki-tcb.pl
*.random.xti.com.au xti.com.au *.xti.com.au
*.4g.xx6688.top xx6688.top *.xx6688.top