DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=mx-a35.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 12, 2026
Valid Until
May 13, 2026 89 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
2F:3B:4D:47:E6:DA:12:19:03:2F:C8:24:68:EC:88:38:D2:C0:B0:7A:E1:D6:A1:95:F7:5C:3D:68:3B:AE:45:00
Alternative Names
89 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains
shiwmax.com *.shiwmax.com *.hostmaster.shiwmax.com

Other domains in certificate

1win-br8.xyz *.1win-br8.xyz *.aws.1win-br8.xyz *.dev.1win-br8.xyz *.ftp.1win-br8.xyz
*.admin.archicofradia.com *.api.archicofradia.com *.app.archicofradia.com archicofradia.com *.archicofradia.com *.assets.archicofradia.com *.dev.archicofradia.com *.m.archicofradia.com *.mail.archicofradia.com *.mail2.archicofradia.com *.mx1.archicofradia.com *.staging.archicofradia.com *.test.archicofradia.com *.wildcard.archicofradia.com
*.api.badger.shop *.app.badger.shop badger.shop *.badger.shop *.bgptools-wildcard-confirmed.badger.shop *.carousell-fps.badger.shop *.carousell-hk.badger.shop *.cms.badger.shop *.crm.badger.shop *.ftp.badger.shop *.intranet.badger.shop *.mobile.badger.shop *.panel.badger.shop *.remote.badger.shop *.shop.badger.shop *.stage.badger.shop *.store.badger.shop *.support.badger.shop
*.api.chengannur.com *.blog.chengannur.com chengannur.com *.chengannur.com *.dev.chengannur.com *.mail.chengannur.com *.random.chengannur.com *.test.chengannur.com *.ww1.chengannur.com *.ww38.chengannur.com
coralvuehydro.com *.coralvuehydro.com *.ww7.coralvuehydro.com
*.app.debet.kitchen debet.kitchen *.debet.kitchen *.demo.debet.kitchen *.sitemaps.debet.kitchen *.www.debet.kitchen
dyjs99.top *.dyjs99.top *.www.dyjs99.top
emotivci.live *.emotivci.live *.ftp.emotivci.live
*.api.honeysell.pro *.app.honeysell.pro honeysell.pro *.honeysell.pro *.mail.honeysell.pro
*.hostmaster.lack.it lack.it *.lack.it
mx-a35.com *.mx-a35.com
*.cybersecuritytoday.smlrgroup.com *.email.smlrgroup.com *.exmb1.smlrgroup.com *.mail01.smlrgroup.com *.mailsrv.smlrgroup.com *.nchsmorningreport.smlrgroup.com smlrgroup.com *.smlrgroup.com *.www.smlrgroup.com
tamo.uk *.tamo.uk
*.lcjev.xn--mesv5cc3vzi1a.xyz xn--mesv5cc3vzi1a.xyz *.xn--mesv5cc3vzi1a.xyz