DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt Active incidents

Certificate Information

Subject
CN=tidehawk.info
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 14, 2026
Valid Until
August 12, 2026 53 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7F:E0:50:83:10:37:C5:5E:F0:C6:F2:20:7B:66:1E:DD:F2:23:65:1D:88:3E:D9:B6:B5:9B:D8:1A:4D:DE:0C:F8
Alternative Names
89 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains
espresstoll.com *.espresstoll.com *.mail.espresstoll.com *.random.espresstoll.com *.test.espresstoll.com *.wew.espresstoll.com

Other domains in certificate

3c3cc.com *.3c3cc.com *.random.3c3cc.com *.ww16.3c3cc.com *.ww25.3c3cc.com
accommodationbeechworth.com.au *.accommodationbeechworth.com.au *.ww25.accommodationbeechworth.com.au
chipmaster.pro *.chipmaster.pro *.new.chipmaster.pro
*.cicd.corepy.org *.com.corepy.org corepy.org *.corepy.org
freeonlinemahjong.net *.freeonlinemahjong.net *.imap.freeonlinemahjong.net
garbagestew.com *.garbagestew.com
hamptoninnandsuiteshotel.com *.hamptoninnandsuiteshotel.com *.ww25.hamptoninnandsuiteshotel.com *.ww38.hamptoninnandsuiteshotel.com
haruka.cc *.haruka.cc
herbertsmarketing.com *.herbertsmarketing.com *.random.herbertsmarketing.com
midcomm.com *.midcomm.com *.random.midcomm.com
nrrds.xyz *.nrrds.xyz *.ww38.nrrds.xyz
*.ipe.ors.com.pl *.mx1.ors.com.pl ors.com.pl *.ors.com.pl *.www.ors.com.pl
*.dash.ozr.com.au ozr.com.au *.ozr.com.au *.qa.ozr.com.au
patatorprod.net *.patatorprod.net *.ww38.patatorprod.net
phentermineperscription.com *.phentermineperscription.com
philippinearlines.com *.philippinearlines.com *.random.philippinearlines.com
*.m.spatialgambles.com spatialgambles.com *.spatialgambles.com
*.cicd.temp.exposed *.random.temp.exposed temp.exposed *.temp.exposed
*.ce55aab8-1948-46f7-b689-ac4ae8b5658e.tidehawk.info *.dashboard.tidehawk.info *.demo.tidehawk.info *.dev.tidehawk.info *.gzkjfslx.tidehawk.info *.marketing.tidehawk.info tidehawk.info *.tidehawk.info *.uat.tidehawk.info *.zlnazdemo.tidehawk.info
*.admin.tlg.repair *.hostmaster.tlg.repair *.media.tlg.repair *.random.tlg.repair tlg.repair *.tlg.repair *.ww25.tlg.repair *.ww38.tlg.repair *.www.tlg.repair
*.32.vibeoculos.com vibeoculos.com *.vibeoculos.com *.ww38.vibeoculos.com *.www.vibeoculos.com