DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=zotool.xyz
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 07, 2026
Valid Until
May 08, 2026 89 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C0:55:83:D1:43:DC:F3:AA:57:88:E3:76:93:4A:7D:60:04:9D:FD:1E:2B:93:F7:B5:A5:35:B5:90:63:F5:AC:80
Alternative Names
87 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

87 domains
rgnetwork.online *.rgnetwork.online *.store.rgnetwork.online

Other domains in certificate

hitchhikers.live *.hitchhikers.live *.ww25.hitchhikers.live
kawin77kk.site *.kawin77kk.site *.map.kawin77kk.site *.sitemap.kawin77kk.site
*.1.m1zk1p65.com *.aaa.m1zk1p65.com *.acceptance.m1zk1p65.com *.admin.m1zk1p65.com *.analytic.m1zk1p65.com *.apps.m1zk1p65.com *.autoconfig.m1zk1p65.com *.autodiscover.m1zk1p65.com *.backend.m1zk1p65.com *.backup.m1zk1p65.com *.bi.m1zk1p65.com *.cdzrjblog.m1zk1p65.com *.chart.m1zk1p65.com *.checkout.m1zk1p65.com *.dashboard.m1zk1p65.com *.dashboards.m1zk1p65.com *.dashs.m1zk1p65.com *.demo.m1zk1p65.com *.dev.m1zk1p65.com *.docs.m1zk1p65.com *.ebdisk.m1zk1p65.com *.ebmail.m1zk1p65.com *.extranet.m1zk1p65.com *.fiuzbordpress.m1zk1p65.com *.flowiseai.m1zk1p65.com *.forms.m1zk1p65.com *.forums.m1zk1p65.com *.fr.m1zk1p65.com *.ildcard.m1zk1p65.com *.intel.m1zk1p65.com *.intranet.m1zk1p65.com *.ldpbjintel.m1zk1p65.com *.login.m1zk1p65.com *.m.m1zk1p65.com m1zk1p65.com *.m1zk1p65.com *.mail.m1zk1p65.com *.media.m1zk1p65.com *.members.m1zk1p65.com *.metric.m1zk1p65.com *.mobile.m1zk1p65.com *.orkflow.m1zk1p65.com *.panel.m1zk1p65.com *.phpmyadmin.m1zk1p65.com *.pipeline.m1zk1p65.com *.production-jenkins.m1zk1p65.com *.production.m1zk1p65.com *.public.m1zk1p65.com *.redash.m1zk1p65.com *.report.m1zk1p65.com *.reports.m1zk1p65.com *.research.m1zk1p65.com *.rzevcstats.m1zk1p65.com *.ssh.m1zk1p65.com *.staging.m1zk1p65.com *.stats.m1zk1p65.com *.visual.m1zk1p65.com *.wap.m1zk1p65.com *.www1.m1zk1p65.com *.xycupsecure.m1zk1p65.com
*.cpanel.orko.life *.cpcalendars.orko.life *.cpcontacts.orko.life *.mail.orko.life orko.life *.orko.life *.pay.orko.life *.sanjeev-saigal.orko.life *.webdisk.orko.life *.webmail.orko.life *.www.orko.life
zafirah.store *.zafirah.store
*.webdisk.zotool.xyz *.ww25.zotool.xyz zotool.xyz *.zotool.xyz