DNS Gurus
Open Cached · just now
77/100 SECURITY SCORE

Certificate Information

Subject
CN=admin-staging.eql.ai
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 07, 2025
Valid Until
January 05, 2026 41 days
Public Key
RSA 2048 bit Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
99:2F:D6:CD:75:48:7E:0E:A9:3A:C1:7C:DD:1D:0A:28:39:29:00:3A:C5:33:78:44:03:33:E7:29:FC:F3:B3:07
Alternative Names
100 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains
tannermorlan.com

Other domains in certificate

ajukas.tech
astrumgames.com
muybien10.aula365.com
baseed.co.jp
dev.battle-buddies.org
www.besanfra.com
risound.bluesapience.com
demo.bosscool.be
www.carfortest.ca
ceostech.fr
citrusclean.cc
www.stylerecipe.co.kr
www.busoft.com.tr
csiadambakkam.com
gudbooks.danimoya.es
centralpark.mb.dev.br
www.test.devprestigeride.com
www.doq.chat
www.doskai.com
q1-collections.dpd.co.uk
ecchi-code.com
www.eelclip.com
link.empresaria.online
testnet.ensuro.co
testing.envisiondj.com
admin-staging.eql.ai
www.exhaustiondisorder.com
order.ezmeals.tw
fein-guad.at
donboscogent.flockim.com
www.forro.se
freshness.be
gadiamonetaryfund.org
online.gatewaymarriageconference.com
links.golkee.com
gotticket.pa
gtsol.net
www.gurayyilmaz.com
login.hardylingerie.com
summer.hexagongames.in
hfrisk.org
hitme.fans
link2.homesoon.jp
hrautosolutions.com
humanoidmash.com
kartiny-i-ikony.org
status.kenlo.com.br
go.kollekt.dk
dev.kombuchapunk.com
twitter.limaois.me
livebusinessupdate.com
comp3111.lotusfa.com
maggie.work
auth.maprinter.com
martinmaine.com
master-spa.com
masteryourtongue.com
mayjaymusic.sg
mooncat.pro
multitec.uy
admin.mylahorikitchen.com
nadswarranty.net
www.nvoicepro.com
portal.odin.onl
cattool.onesky.app
livetracking.onroad.app
www.orderbearkingbrewing.com
www.oas.passerelle.io
link.payzy.gr
www.perfect-pentago.net
progamification.probs.pl
brief.procaryote.com
www.r-touches.be
id-logistics.rabot.us
www.react-most-wanted.com
updates.remote-id.net
dl-stgtest.ringitgames.com
rlorenzana.online
storybook.rocket.la
hamptonroads.rpnva.org
www.shivansh.ca
shivbababot-simpvestor.com
air-link.simplycontrol.cz
www.splitbits.co
www.ss-trenchless.com
www.stateroads.com.au
www.swarf.co
ma.techaula.net
thedefiningplace.com
thekilgorefilms.com
theugatour.com
app.tripleaaaplus.com
www.tropezcapital.com
app.unacare.de
advisors.untied.io
g.untilgone.com
link.sekihan.server.watchgames.jp
zahedul.com
www.zakariyamohamed.co.uk