DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=itsaleak.xyz
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
January 10, 2026
Valid Until
April 10, 2026 48 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A5:3B:A8:DF:76:84:01:3D:C7:19:23:B5:32:13:C5:38:51:54:79:6F:CB:A4:08:23:BC:5F:77:5A:68:DF:A6:E6
Alternative Names
88 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

88 domains
strin.com *.strin.com *.app.strin.com *.chat.strin.com *.ww25.strin.com

Other domains in certificate

*.admin.exchanger.com.au *.api.exchanger.com.au *.app.exchanger.com.au *.auth.exchanger.com.au *.autoconfig.exchanger.com.au *.autodiscover.exchanger.com.au *.blog.exchanger.com.au *.chat.exchanger.com.au *.cloud.exchanger.com.au *.cms.exchanger.com.au *.community.exchanger.com.au *.cpanel.exchanger.com.au *.cpcalendars.exchanger.com.au *.cpcontacts.exchanger.com.au *.dan.exchanger.com.au *.dashboard.exchanger.com.au *.ebmail.exchanger.com.au *.en.exchanger.com.au exchanger.com.au *.exchanger.com.au *.forum.exchanger.com.au *.forums.exchanger.com.au *.fr.exchanger.com.au *.git.exchanger.com.au *.help.exchanger.com.au *.imap.exchanger.com.au *.intranet.exchanger.com.au *.login.exchanger.com.au *.lyncdiscover.exchanger.com.au *.m.exchanger.com.au *.mail.exchanger.com.au *.mailserver.exchanger.com.au *.members.exchanger.com.au *.mobile.exchanger.com.au *.mysql.exchanger.com.au *.news.exchanger.com.au *.newsletter.exchanger.com.au *.old.exchanger.com.au *.phpmyadmin.exchanger.com.au *.pop3.exchanger.com.au *.portal.exchanger.com.au *.sitemap.exchanger.com.au *.ssh.exchanger.com.au *.store.exchanger.com.au *.support.exchanger.com.au *.vpn.exchanger.com.au *.webmail.exchanger.com.au *.whm.exchanger.com.au *.wiki.exchanger.com.au *.ww25.exchanger.com.au
*.direct101.gamexmaster.com *.ff20.gamexmaster.com gamexmaster.com *.gamexmaster.com *.sr.gamexmaster.com *.ww38.gamexmaster.com *.www.gamexmaster.com
*.8d144560-b462-44e4-bff7-567f66976d99.itsaleak.xyz *.ghggmww38.itsaleak.xyz itsaleak.xyz *.itsaleak.xyz *.www.itsaleak.xyz
*.a.sspick.com *.bus.sspick.com sspick.com *.sspick.com
*.25.wwwturo.com *.admin.wwwturo.com *.api.wwwturo.com *.app.wwwturo.com *.assets.wwwturo.com *.blog.wwwturo.com *.demo.wwwturo.com *.dev.wwwturo.com *.m.wwwturo.com *.shop.wwwturo.com *.staging.wwwturo.com *.test.wwwturo.com *.wildcard.wwwturo.com *.ww.wwwturo.com *.ww25.wwwturo.com wwwturo.com *.wwwturo.com