DNS Gurus
Cached · just now
88/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 39
Google AdSense logo Google AdSense Pingdom logo Pingdom Google Tag Manager logo Google Tag Manager Bing logo Bing Google Sign-In logo Google Sign-In HackerOne logo HackerOne Amplitude logo Amplitude Sectigo logo Sectigo GrowthBook logo GrowthBook Cloudflare Workers logo Cloudflare Workers DataTables logo DataTables Google DoubleClick logo Google DoubleClick AdRoll logo AdRoll Google Analytics logo Google Analytics Microsoft Advertising logo Microsoft Advertising AMP logo AMP Typeform logo Typeform Google API JS Client logo Google API JS Client TikTok Analytics logo TikTok Analytics Google Fonts logo Google Fonts Twitter logo Twitter LinkedIn logo LinkedIn Google Search logo Google Search BootstrapCDN logo BootstrapCDN Facebook logo Facebook GitHub logo GitHub CookieYes logo CookieYes Pinterest logo Pinterest Cloudflare CDNJS logo Cloudflare CDNJS TikTok logo TikTok AWS logo AWS jQuery logo jQuery GetSiteControl logo GetSiteControl Vimeo logo Vimeo Google Optimize logo Google Optimize FirstPromoter logo FirstPromoter YouTube logo YouTube Microsoft Clarity logo Microsoft Clarity jsDelivr logo jsDelivr

Certificate Information

Subject
C=US, ST=Delaware, O=Stripo Inc, CN=*.stripo.email
Issuer
C=GB, O=Sectigo Limited, CN=Sectigo Public Server Authentication CA OV R36
Valid From
July 21, 2025
Valid Until
August 01, 2026 92 days
Public Key
RSA 2048 bit Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
26:EB:A9:B6:ED:84:E5:E8:93:8B:34:D5:8A:D2:8F:E0:F2:74:49:24:17:82:4C:19:EE:3D:07:59:4D:6C:51:FA
Alternative Names
2 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Good
max-age=31536000; includeSubDomains
Content-Security-Policy
Google DoubleClick logo
Basic
base-uri; connect-src; default-src; +9 more Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Consider adding 'preload' to HSTS for maximum security
  • Improve CSP by adding more specific directives and removing 'unsafe-inline'
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

2 domains
stripo.email *.stripo.email