DNS Gurus
Cached · just now
79/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=candymachiens.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 10, 2026
Valid Until
May 11, 2026 74 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
44:DC:E8:AF:3C:F4:73:38:FE:5F:F2:9F:AA:41:9D:F7:7A:D6:AF:6A:A4:0A:21:09:2B:3E:40:8D:D4:09:24:31
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
rizhao.io *.rizhao.io

Other domains in certificate

candymachiens.com *.candymachiens.com
carpet-clean-ca-yshkin.click *.carpet-clean-ca-yshkin.click
chi-fit.com *.chi-fit.com
cloudnextpath.com *.cloudnextpath.com
clownlabs.com *.clownlabs.com
cosmowin470.shop *.cosmowin470.shop
couch.rent *.couch.rent
counseling-facilities-near-me.click *.counseling-facilities-near-me.click
couplecafe.com *.couplecafe.com
garripotter-lordfilm.ru *.garripotter-lordfilm.ru
geniusleadgenwai.com *.geniusleadgenwai.com
gkjj49.buzz *.gkjj49.buzz
gotlawyerleads.com *.gotlawyerleads.com
immunoglobulin-cidp-435751135.click *.immunoglobulin-cidp-435751135.click
instantdevelopments.com *.instantdevelopments.com
iv88.basketball *.iv88.basketball
iv88.beer *.iv88.beer
iv88.bot *.iv88.bot
iv88.fishing *.iv88.fishing
iv88.foundation *.iv88.foundation
iv88.menu *.iv88.menu
iv88.phd *.iv88.phd
iv88.property *.iv88.property
iv88.sydney *.iv88.sydney
jurieandjarre.com *.jurieandjarre.com
management-cybersecurity.click *.management-cybersecurity.click
mechanic-training-au-oleksa.click *.mechanic-training-au-oleksa.click
mechanic-training-usa-oleksa.click *.mechanic-training-usa-oleksa.click
metarankad.click *.metarankad.click
microbtwhatsminerd1.com *.microbtwhatsminerd1.com
npg7npg7nd.com *.npg7npg7nd.com
ouverture-compte-societe-en-ligne-68.cfd *.ouverture-compte-societe-en-ligne-68.cfd
rkvalid.immo *.rkvalid.immo
saadservice.com *.saadservice.com
sands99.club *.sands99.club
sehu530.cc *.sehu530.cc
signyean.my *.signyean.my
smartsupportzebra.com *.smartsupportzebra.com
soulmovebeattop.com *.soulmovebeattop.com
sportgearnation.cfd *.sportgearnation.cfd
strays.xyz *.strays.xyz
studiomosaicmarketing.click *.studiomosaicmarketing.click
studiomosaicremote.click *.studiomosaicremote.click
studiomosaicservice.click *.studiomosaicservice.click