DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt Active incidents

Certificate Information

Subject
CN=343228.blog
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 30, 2026
Valid Until
July 29, 2026 80 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CB:93:77:5D:89:49:F9:99:7C:50:75:66:76:B5:00:A5:7A:8C:38:71:04:05:AF:29:38:43:DB:0A:71:A1:B4:45
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
openidea.co *.openidea.co *.mx.openidea.co *.random.openidea.co *.www.openidea.co

Other domains in certificate

019526.lol *.019526.lol *.dev.019526.lol
228860.cc *.228860.cc *.cc.228860.cc
343228.blog *.343228.blog *.blog.343228.blog
atekbiteyg.click *.atekbiteyg.click *.jvcggjcrdqa-a.atekbiteyg.click *.www.atekbiteyg.click
*.alicemoresin.being.dog being.dog *.being.dog *.denim.being.dog *.panel.being.dog
*.a.financephantomfrance.com financephantomfrance.com *.financephantomfrance.com
fuck1069.com *.fuck1069.com *.nav.fuck1069.com *.sitemap.fuck1069.com
*.9880de07-1971-4be1-bfd7-34a5400de6ec.fullregard.io *.admin.fullregard.io *.app.fullregard.io *.f97a4a62-80c1-4693-9ff5-c733842c677a.fullregard.io fullregard.io *.fullregard.io *.test.fullregard.io *.www.fullregard.io
hindisexvideo.xyz *.hindisexvideo.xyz *.htshuvts3.hindisexvideo.xyz
*.hostmaster.indianstore.world indianstore.world *.indianstore.world *.vpn.indianstore.world
*.account.iuh.ch *.backend.iuh.ch *.backup.iuh.ch *.blog.iuh.ch *.dev.iuh.ch iuh.ch *.iuh.ch *.kunden.iuh.ch *.m.iuh.ch *.mobile.iuh.ch *.my.iuh.ch *.new.iuh.ch *.news.iuh.ch *.old.iuh.ch *.staging.iuh.ch *.user.iuh.ch *.web.iuh.ch *.wiki.iuh.ch
plomvixen.cfd *.plomvixen.cfd *.test.plomvixen.cfd
*.comune.pmnu.com pmnu.com *.pmnu.com
po18avoaoa7r.sbs *.po18avoaoa7r.sbs *.ww12.po18avoaoa7r.sbs
*.pay.prideunion.org prideunion.org *.prideunion.org
*.crm.torrapk.com *.old.torrapk.com *.test1.torrapk.com torrapk.com *.torrapk.com *.upload.torrapk.com *.webmail.torrapk.com
*.sitemap.truelifepoet.wine truelifepoet.wine *.truelifepoet.wine
*.adg.yinmak.net *.ns.yinmak.net *.ns1.yinmak.net yinmak.net *.yinmak.net