DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt Active incidents

Certificate Information

Subject
CN=donnaandrewslifecoach.com
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
June 15, 2026
Valid Until
September 13, 2026 81 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
AE:DB:87:89:5A:1D:1F:FE:88:DF:D2:64:12:26:36:69:82:12:C6:AE:12:7D:43:3B:7F:40:D2:27:2E:3C:A4:94
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
pelemeni.com *.pelemeni.com

Other domains in certificate

56cg21.com *.56cg21.com *.ww38.56cg21.com
*.aaa.awfullybad.com awfullybad.com *.awfullybad.com *.livejournal.awfullybad.com *.ww12.awfullybad.com
canvasvista.com *.canvasvista.com
chushuba.com *.chushuba.com
*.backend.coachcast.co coachcast.co *.coachcast.co
coinquer.com *.coinquer.com
donnaandrewslifecoach.com *.donnaandrewslifecoach.com *.lc.donnaandrewslifecoach.com
enama.com *.enama.com
healingmassageandspa.com *.healingmassageandspa.com
janya.in *.janya.in *.test.janya.in
*.comwww.mjsqtvf.com mjsqtvf.com *.mjsqtvf.com
*.app.nfcseek.xyz nfcseek.xyz *.nfcseek.xyz
nippix.com *.nippix.com
nsfwmake.xyz *.nsfwmake.xyz
oceanvapor.com *.oceanvapor.com
organicmeats.com *.organicmeats.com
parlonsphoto.com *.parlonsphoto.com
peear.com *.peear.com
perfectgf.com *.perfectgf.com
pink0.com *.pink0.com
pipaso.com *.pipaso.com
playgalaxy.vip *.playgalaxy.vip
playstoreapk.com *.playstoreapk.com
podker.com *.podker.com
posteral.com *.posteral.com
privatepaypatients.com *.privatepaypatients.com
producemate.com *.producemate.com
professionalcoachai.com *.professionalcoachai.com
pumpcreator.com *.pumpcreator.com
puravive.art *.puravive.art
r5hm7.top *.r5hm7.top
textpolish.com *.textpolish.com
vsrenterprises.com *.vsrenterprises.com
*.explore.watchserie.bar *.home.watchserie.bar *.superset.watchserie.bar watchserie.bar *.watchserie.bar
whazit.com *.whazit.com
xatac.com *.xatac.com
xn--njr.com *.xn--njr.com
xzsss.bid *.xzsss.bid