DNS Gurus
Cached · just now
79/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=behavior-change.net
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 20, 2026
Valid Until
May 21, 2026 88 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
AB:4D:D9:D4:7C:5C:27:E8:43:FE:1F:D3:B1:06:7E:25:69:5B:84:B7:A8:39:99:56:29:74:13:DA:AC:99:24:B8
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
newfrontapp.com *.newfrontapp.com

Other domains in certificate

26136953.vip *.26136953.vip
*.admin.almayor.com almayor.com *.almayor.com *.anyconnect.almayor.com *.anywhere.almayor.com *.app.almayor.com *.apps.almayor.com *.autoconfig.almayor.com *.cisapp.almayor.com *.citrix.almayor.com *.clientesvpn.almayor.com *.cloudvpn.almayor.com *.connect.almayor.com *.demo.almayor.com *.drvpn.almayor.com *.exchange.almayor.com *.forticlient.almayor.com *.fortigate.almayor.com *.fortinet.almayor.com *.fortivpn.almayor.com *.imap.almayor.com *.m.almayor.com *.mail.almayor.com *.mx.almayor.com *.mymail.almayor.com *.owa.almayor.com *.ra-vpn.almayor.com *.ra.almayor.com *.ravpn.almayor.com *.rdp.almayor.com *.rds.almayor.com *.rdweb.almayor.com *.relay.almayor.com *.remote.almayor.com *.secure.almayor.com *.smtp.almayor.com *.ssl.almayor.com *.vdi.almayor.com *.vpngate.almayor.com *.webdisk.almayor.com *.wiki.almayor.com *.ww17.almayor.com *.xapp.almayor.com
anishalakhani.com *.anishalakhani.com
behavior-change.net *.behavior-change.net *.www.behavior-change.net
blackenvios.tech *.blackenvios.tech
clearbluepoolcleaners.pro *.clearbluepoolcleaners.pro
crm74.top *.crm74.top
escortegalati.ro *.escortegalati.ro
*.blog.guestblog.net *.etuttoquellochecerchi.guestblog.net guestblog.net *.guestblog.net *.remote.guestblog.net *.reporting.guestblog.net *.staging.guestblog.net *.supersets.guestblog.net *.whm.guestblog.net *.ww41.guestblog.net
huntpm.com *.huntpm.com
kimig.xyz *.kimig.xyz
kimilcloud.xyz *.kimilcloud.xyz
magebitai.com *.magebitai.com
qrlfvbgmqwbyx.cc *.qrlfvbgmqwbyx.cc
thepinguin.com *.thepinguin.com
topoquantum.com *.topoquantum.com
vesoca.com *.vesoca.com
worldzooday.com *.worldzooday.com
yallag.ch *.yallag.ch