DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt Active incidents

Certificate Information

Subject
CN=chowdowndc.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
March 26, 2026
Valid Until
June 24, 2026 44 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
36:DE:8D:5C:1C:7E:67:2D:48:82:F1:D6:C3:BD:AB:21:2B:67:28:52:B5:5A:CC:E2:46:F3:A0:03:A3:7E:99:01
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
ldiu.com *.ldiu.com *.innovation.ldiu.com *.org.ldiu.com *.wildcard.ldiu.com

Other domains in certificate

arreach.click *.arreach.click *.trk.arreach.click *.www.arreach.click
artstatin.com *.artstatin.com
authentically.co.uk *.authentically.co.uk
cammotimes.com *.cammotimes.com *.hostmaster.cammotimes.com
chowdowndc.com *.chowdowndc.com
colombiamayor.co *.colombiamayor.co *.consulta.colombiamayor.co *.enlinea.colombiamayor.co *.intenseworkozafiro.colombiamayor.co *.mobile.colombiamayor.co *.nelfsp.colombiamayor.co *.portalcorporativo.colombiamayor.co *.recaudofsp.colombiamayor.co *.rodriguez.colombiamayor.co *.visor.colombiamayor.co *.zafiro.colombiamayor.co
dealssea.com *.dealssea.com
edimater.com *.edimater.com *.random.edimater.com
extreamprivate.com *.extreamprivate.com *.hostmaster.extreamprivate.com
*.airtickets.flystw.com flystw.com *.flystw.com
gedcom.com *.gedcom.com *.genesis.gedcom.com
linof.de *.linof.de
maxipconnects.com *.maxipconnects.com *.random.maxipconnects.com
metrology-app-staging.com *.metrology-app-staging.com
moorespla.net *.moorespla.net *.random.moorespla.net
mykelsey.com *.mykelsey.com *.www.mykelsey.com
*.app.olympicsstreams.me *.emv1.olympicsstreams.me olympicsstreams.me *.olympicsstreams.me *.random.olympicsstreams.me *.sitemap.olympicsstreams.me *.whm.olympicsstreams.me *.ww1.olympicsstreams.me *.ww25.olympicsstreams.me *.ww38.olympicsstreams.me *.www.olympicsstreams.me *.xvmihhdu.olympicsstreams.me
*.blog.paisajesdemar.com paisajesdemar.com *.paisajesdemar.com
*.random.revistainvisibles.com revistainvisibles.com *.revistainvisibles.com
scrath.io *.scrath.io *.shop.scrath.io *.ww25.scrath.io
tighroslin2008.com *.tighroslin2008.com
vhfdx.eu *.vhfdx.eu
worldgeopark.org *.worldgeopark.org *.ww25.worldgeopark.org *.ww38.worldgeopark.org
*.hostmaster.wwwbmic.com wwwbmic.com *.wwwbmic.com