DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt Active incidents

Certificate Information

Subject
CN=strongonchain.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 02, 2026
Valid Until
July 31, 2026 82 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
26:81:0B:70:0B:73:3B:AD:66:30:7A:5E:64:A1:99:E0:67:78:60:A2:2A:43:04:0A:C5:EA:4B:A7:0C:1C:E3:6B
Alternative Names
89 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains
bnvena.com *.bnvena.com *.random.bnvena.com

Other domains in certificate

*.admin.domainotes.com domainotes.com *.domainotes.com *.luxs7rxhwm.domainotes.com *.m.domainotes.com *.staging.domainotes.com
globaltruth.org *.globaltruth.org *.wiki.globaltruth.org
*.api.puffinmodels.com *.app.puffinmodels.com *.branches.puffinmodels.com *.channel.puffinmodels.com *.client.puffinmodels.com *.climate.puffinmodels.com *.dash.puffinmodels.com *.dashboard.puffinmodels.com *.dev.puffinmodels.com *.ftp.puffinmodels.com *.gwsparts.puffinmodels.com *.home.puffinmodels.com *.insight.puffinmodels.com *.local.puffinmodels.com *.locations.puffinmodels.com *.m.puffinmodels.com *.mail.puffinmodels.com *.mobile.puffinmodels.com *.news.puffinmodels.com *.owa.puffinmodels.com puffinmodels.com *.puffinmodels.com *.ra.puffinmodels.com *.random.puffinmodels.com *.remote.puffinmodels.com *.smtp.puffinmodels.com *.stores.puffinmodels.com *.towerhobbies.puffinmodels.com *.viz.puffinmodels.com *.wap.puffinmodels.com *.web.puffinmodels.com *.webmail.puffinmodels.com
*.9px3h2q6vvtwg0h7.rockingentertainment.net *.any.rockingentertainment.net rockingentertainment.net *.rockingentertainment.net *.ww16.rockingentertainment.net *.ww25.rockingentertainment.net *.ww38.rockingentertainment.net
*.168f3814-38a5-4b27-86d1-8f1b8fabfd23.strongonchain.com *.admin.strongonchain.com *.api.strongonchain.com *.beta.strongonchain.com *.dashboard.strongonchain.com *.demo.strongonchain.com *.dev.strongonchain.com *.git.strongonchain.com *.gitlab.strongonchain.com *.members.strongonchain.com *.secure.strongonchain.com *.staging.strongonchain.com *.stg.strongonchain.com strongonchain.com *.strongonchain.com *.test.strongonchain.com *.uat.strongonchain.com *.v1.strongonchain.com *.vastlstg.strongonchain.com *.web.strongonchain.com *.zuafobwl.strongonchain.com
*.analytics.wildcoast.it *.api.wildcoast.it *.dev.wildcoast.it *.dqxlestaging.wildcoast.it *.hostmaster.wildcoast.it *.internal.wildcoast.it *.mail.wildcoast.it *.random.wildcoast.it *.staging.wildcoast.it *.store.wildcoast.it *.summary.wildcoast.it *.superset.wildcoast.it wildcoast.it *.wildcoast.it
*.vip.x5566.vip x5566.vip *.x5566.vip