DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=bridgewell.group
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 29, 2026
Valid Until
July 28, 2026 56 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E5:11:55:91:DD:68:66:7A:5E:BF:91:8B:3F:35:47:00:08:75:68:94:25:74:51:34:0D:F6:A2:B2:D3:7E:5F:24
Alternative Names
89 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains
borwardschools.com *.borwardschools.com *.my.borwardschools.com *.random.borwardschools.com *.taravella.borwardschools.com

Other domains in certificate

1208.au *.1208.au
69bag12.com *.69bag12.com *.ww25.69bag12.com
ausschlag-am-ganzen-koerper.de *.ausschlag-am-ganzen-koerper.de
bridgewell.group *.bridgewell.group *.ww25.bridgewell.group
brunette.au *.brunette.au
btcsweeps.com *.btcsweeps.com *.random.btcsweeps.com *.ww38.btcsweeps.com
caperiverheritagemuseum.com *.caperiverheritagemuseum.com
clearvisioneauclaire.org *.clearvisioneauclaire.org *.ec.clearvisioneauclaire.org
commencoresheets.com *.commencoresheets.com
debtadvisers.au *.debtadvisers.au
fischgraete-im-hals.de *.fischgraete-im-hals.de
georgiarefinance.com *.georgiarefinance.com
gutsceinbuch.de *.gutsceinbuch.de
*.beta.heatglo.com *.comune.heatglo.com heatglo.com *.heatglo.com
helsb.com *.helsb.com *.ww1.helsb.com
hogash-demos.com *.hogash-demos.com
jte.de *.jte.de *.wwweaay.jte.de
*.hostmaster.kayatsez.com kayatsez.com *.kayatsez.com
*.hostmaster.killshare.com killshare.com *.killshare.com
minuta.org *.minuta.org
ogmovies.com *.ogmovies.com
optimisedconnect.com.au *.optimisedconnect.com.au *.random.optimisedconnect.com.au
*.comune.optoine.net optoine.net *.optoine.net *.sq.optoine.net
pineconereasearch.com *.pineconereasearch.com
*.random.rewardscasino.com rewardscasino.com *.rewardscasino.com
selectcerts.co.uk *.selectcerts.co.uk *.test.selectcerts.co.uk
*.net.syndicated.mobi syndicated.mobi *.syndicated.mobi
*.hostmaster.trafficdns.net trafficdns.net *.trafficdns.net
vlemathswatch.co.uk *.vlemathswatch.co.uk
*.analytics.wildflorastudio.com.au wildflorastudio.com.au *.wildflorastudio.com.au
wwwunioninvestment.de *.wwwunioninvestment.de
*.random.xn--kchenleisten-dlb.de xn--kchenleisten-dlb.de *.xn--kchenleisten-dlb.de