DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=brushwithtech.digital
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 12, 2026
Valid Until
August 10, 2026 58 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
59:44:29:12:C1:50:80:20:9B:99:D4:41:0A:2B:CF:49:F3:91:4F:84:8A:EA:24:1E:D8:FD:F8:75:C2:21:E0:4E
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
choptank.com *.choptank.com *.ctexch.choptank.com *.openpgpkey.choptank.com

Other domains in certificate

architectperth.com.au *.architectperth.com.au *.random.architectperth.com.au
australiancloudsurvey.com.au *.australiancloudsurvey.com.au
*.4a8da224-0ebf-4055-b214-a902dc01ed92.bilgicanavim.info *.admin.bilgicanavim.info *.assets.bilgicanavim.info bilgicanavim.info *.bilgicanavim.info *.sitemaps.bilgicanavim.info
*.animaltrips.brushwithtech.digital *.arca.brushwithtech.digital *.beta.brushwithtech.digital brushwithtech.digital *.brushwithtech.digital *.cdek-am.brushwithtech.digital *.confluence.brushwithtech.digital *.crucible.brushwithtech.digital *.domaincontroller.brushwithtech.digital *.mailgate.brushwithtech.digital *.major-express.brushwithtech.digital *.member.brushwithtech.digital *.ous29l.brushwithtech.digital *.ponyexpress.brushwithtech.digital *.web02.brushwithtech.digital *.ww02.brushwithtech.digital
*.autodiscover.cgibike.com cgibike.com *.cgibike.com *.cpcontacts.cgibike.com *.webdisk.cgibike.com *.ww25.cgibike.com *.ww5.cgibike.com
chast.eu *.chast.eu *.webmail.chast.eu
*.be.chatgptalert.com chatgptalert.com *.chatgptalert.com *.demo.chatgptalert.com *.mail.chatgptalert.com *.media.chatgptalert.com *.www.chatgptalert.com
clipping.au *.clipping.au
*.cpanel.hskxxx.com *.download.hskxxx.com *.hostmaster.hskxxx.com hskxxx.com *.hskxxx.com *.mail.hskxxx.com *.ns1.hskxxx.com *.ns2.hskxxx.com *.webdisk.hskxxx.com *.webmail.hskxxx.com *.ww38.hskxxx.com *.www.hskxxx.com
inleads.online *.inleads.online
*.backup.princemichael.com *.beta.princemichael.com *.blog.princemichael.com *.crm.princemichael.com *.demo.princemichael.com *.m.princemichael.com princemichael.com *.princemichael.com *.remote.princemichael.com *.sitemap.princemichael.com *.sitemaps.princemichael.com *.vpn.princemichael.com *.wildcard.princemichael.com
stmarysshillong.net *.stmarysshillong.net *.ww25.stmarysshillong.net
sulampapua.com *.sulampapua.com *.whm.sulampapua.com
*.home.thedungeoncast.com *.random.thedungeoncast.com thedungeoncast.com *.thedungeoncast.com
*.32.w1-rugbypg.bet w1-rugbypg.bet *.w1-rugbypg.bet