DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=honolulumentor.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 14, 2026
Valid Until
April 14, 2026 63 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
83:78:E5:DA:DA:BF:0D:56:16:3E:26:11:7A:5E:3B:68:C9:3B:C3:A5:4D:9E:A8:34:A5:64:C4:49:71:A1:84:5C
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
transensual.com *.transensual.com

Other domains in certificate

aacoa.net *.aacoa.net
bjstattoo.com *.bjstattoo.com *.random.bjstattoo.com
certianteed.com *.certianteed.com
*.045c156b-be75-47f3-90ab-784e57b7820f.cinevision.online *.1.cinevision.online *.12.cinevision.online *.akamai-j3ya3xr4-api.cinevision.online *.api.cinevision.online *.assets.cinevision.online *.autoconfig.cinevision.online *.blog.cinevision.online cinevision.online *.cinevision.online *.docs.cinevision.online *.lovenokiac3.cinevision.online *.pair.cinevision.online *.prandtl.cinevision.online *.sevairothserendibite.cinevision.online *.shop.cinevision.online *.ww25.cinevision.online *.ww38.cinevision.online *.www.cinevision.online
ethicalhacker.com.au *.ethicalhacker.com.au
ghannoushi.net *.ghannoushi.net
gogreene.org *.gogreene.org *.mail.gogreene.org *.www.gogreene.org
honolulumentor.com *.honolulumentor.com *.mail.honolulumentor.com *.optimizepress.honolulumentor.com
immobilem.de *.immobilem.de
kidstoysplay.click *.kidstoysplay.click *.mail.kidstoysplay.click
kiss-cartoon.uk *.kiss-cartoon.uk
localsecretsbox.com *.localsecretsbox.com
*.aedyaq.lwp7.rest *.bcgosy.lwp7.rest *.dhp.lwp7.rest *.gjk.lwp7.rest *.lviikv.lwp7.rest lwp7.rest *.lwp7.rest *.qzu.lwp7.rest *.sivfaz.lwp7.rest *.tbadht.lwp7.rest *.tmrouj.lwp7.rest
*.comw25.nadoo.com *.corp.nadoo.com *.de.nadoo.com nadoo.com *.nadoo.com *.ww38.nadoo.com
nutaki.net *.nutaki.net *.prod.nutaki.net *.ww38.nutaki.net
overnighter.com.au *.overnighter.com.au
pornhubpremim.com *.pornhubpremim.com *.random.pornhubpremim.com
savannahfox.com *.savannahfox.com
tyribee.com *.tyribee.com
unitedlifeinsurance.com *.unitedlifeinsurance.com *.ww38.unitedlifeinsurance.com
watchhallmsrktv.com *.watchhallmsrktv.com
weare1.org *.weare1.org
weekofwisdom.com *.weekofwisdom.com
zhongxinyinhang.com *.zhongxinyinhang.com