DNS Gurus
Cached · just now
92/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 32
AWS CloudFront logo AWS CloudFront Dropbox logo Dropbox Google Trust logo Google Trust Akamai logo Akamai AWS logo AWS Amazon S3 logo Amazon S3 Beamer logo Beamer Braintree logo Braintree Calendly logo Calendly Cloudflare CDNJS logo Cloudflare CDNJS Cloudflare Web Analytics logo Cloudflare Web Analytics Font Awesome logo Font Awesome Freshdesk logo Freshdesk Freshworks logo Freshworks Google Analytics logo Google Analytics Google API JS Client logo Google API JS Client Google Fonts logo Google Fonts Google Maps logo Google Maps Google reCAPTCHA logo Google reCAPTCHA Google Search logo Google Search Google Static File Front End logo Google Static File Front End Google Sign-In logo Google Sign-In Google Tag Manager logo Google Tag Manager Google Translate logo Google Translate Heap logo Heap jsDelivr logo jsDelivr New Relic logo New Relic Qualtrics logo Qualtrics Sentry logo Sentry unpkg logo unpkg Wistia logo Wistia Google Cloud logo Google Cloud

Certificate Information

Subject
CN=support.outbox.com
Issuer
C=US, O=Google Trust Services, CN=WE1
Valid From
March 26, 2026
Valid Until
June 24, 2026 45 days
Public Key
ECDSA 256 bit (P-256) Adequate
Signature Algorithm
ECDSA-SHA256
SHA-256 Fingerprint
B0:1D:39:19:68:69:86:9B:0D:41:4E:8A:D0:C6:73:D8:F3:95:BF:2E:E8:E8:6D:92:9E:57:A4:8A:8E:3D:A4:0A
Alternative Names
1 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Excellent
max-age=31536000; includeSubDomains; preload
Content-Security-Policy
Dropbox logo
Basic
default-src; connect-src; font-src; +7 more Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Improve CSP by adding more specific directives and removing 'unsafe-inline'
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Configured (Restricts certificate issuance)
Current Issuer
Authorized (Matches CAA policy)
Authorized CAs
amazon.com letsencrypt.org pki.goog ; cansignhttpexchanges=yes
Recommendations
  • Consider using critical flag (flags=128) for stricter CAA enforcement
  • Consider adding 'iodef' records to receive notifications about unauthorized certificate issuance attempts
  • Consider adding 'issuewild' records to control wildcard certificate issuance

Subject Alternative Names

1 domain
support.outbox.com