DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=legally.cc
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 23, 2026
Valid Until
August 21, 2026 80 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CE:13:0A:DD:87:68:7B:76:FB:52:52:3E:71:FB:5D:62:8E:B0:41:EE:63:5D:BC:46:ED:59:D6:84:F1:5F:A6:15
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
skjda.co *.skjda.co

Other domains in certificate

legally.cc *.legally.cc
leon-casino-a5mvk.top *.leon-casino-a5mvk.top
liquidchilled.com *.liquidchilled.com
mplproapk.download *.mplproapk.download
passaportesolucoes.com *.passaportesolucoes.com
phantomboat.com *.phantomboat.com
primeboostseo.com *.primeboostseo.com
s8suono.com *.s8suono.com
simpson-j-recruitmenthq.com *.simpson-j-recruitmenthq.com
sofa-hin.sbs *.sofa-hin.sbs
souneffects.com *.souneffects.com
stmarysnursinghome.co.in *.stmarysnursinghome.co.in
study1.click *.study1.click
swrzs.qpon *.swrzs.qpon
taibubet.com *.taibubet.com
theworstplayeratcsgointhe.world *.theworstplayeratcsgointhe.world
tlotsa.co.za *.tlotsa.co.za
tombi.com *.tombi.com
used-furniture-in-best-price.sbs *.used-furniture-in-best-price.sbs
waltonestates.co.uk *.waltonestates.co.uk
watchzone.digital *.watchzone.digital
wdatia.com *.wdatia.com
westlandseschrootrecycling.com *.westlandseschrootrecycling.com
weyumachine.com *.weyumachine.com
wpl11.com *.wpl11.com
wpl22.com *.wpl22.com
wpl33.com *.wpl33.com
wpl55.com *.wpl55.com
wpl66.com *.wpl66.com
wpl77.com *.wpl77.com
wpl88.com *.wpl88.com
wpl99.com *.wpl99.com
www17cx1.com *.www17cx1.com
wwwhk78.vip *.wwwhk78.vip
wxmph.cn *.wxmph.cn
x87g.cyou *.x87g.cyou
xn--26qv15adqk5g8al5b.com *.xn--26qv15adqk5g8al5b.com
xn--ai-qp5dt66f.com *.xn--ai-qp5dt66f.com
xn--dkr76z38t7ow.com *.xn--dkr76z38t7ow.com
xn--mgbccabcbvs4bcc3fsk.shop *.xn--mgbccabcbvs4bcc3fsk.shop
xn--tiq083o.com *.xn--tiq083o.com
xn--vnu06e3z6a.com *.xn--vnu06e3z6a.com
xtudo.top *.xtudo.top
z1x7l4lswfqk04z.xyz *.z1x7l4lswfqk04z.xyz