DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=nyklaw.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 21, 2026
Valid Until
August 19, 2026 83 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9E:2A:A2:CA:0E:BD:E1:BC:03:9A:8B:A8:8B:E4:B2:89:0A:5D:78:FA:B1:A1:99:A2:D2:38:7D:5E:5F:50:06:F7
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
vffgroup.com *.vffgroup.com *.m.vffgroup.com

Other domains in certificate

420.irish *.420.irish *.remote.420.irish *.wildcard.420.irish
4rp369.com *.4rp369.com *.ww38.4rp369.com
7dkz.buzz *.7dkz.buzz *.abcd123.7dkz.buzz *.ww25.7dkz.buzz *.ww38.7dkz.buzz
bookbub.co *.bookbub.co *.hostmaster.bookbub.co *.media.bookbub.co *.outbound.bookbub.co *.r.bookbub.co *.random.bookbub.co
carrington1.com *.carrington1.com *.owa.carrington1.com
*.1.centralpixeledge.com *.7.centralpixeledge.com *.alpha.centralpixeledge.com *.app.centralpixeledge.com *.bgptools-wildcard-confirmed.centralpixeledge.com *.blog.centralpixeledge.com centralpixeledge.com *.centralpixeledge.com *.ci.centralpixeledge.com *.jenkins.centralpixeledge.com *.pipeline.centralpixeledge.com *.staging.centralpixeledge.com *.test.centralpixeledge.com *.ww.centralpixeledge.com *.ww1.centralpixeledge.com *.ww12.centralpixeledge.com *.ww7.centralpixeledge.com *.ww99.centralpixeledge.com *.www.centralpixeledge.com
*.1x0hn8.conazol.lat conazol.lat *.conazol.lat
dewiturbo.xyz *.dewiturbo.xyz *.rustore.dewiturbo.xyz
linxpool.com *.linxpool.com *.m.linxpool.com *.wp.linxpool.com *.www.linxpool.com
*.aa9fb2aa-e7ea-4d1e-a663-8e800708e0e7.nyklaw.com *.admin.nyklaw.com *.api.nyklaw.com *.app.nyklaw.com *.campanha.nyklaw.com *.cloud.nyklaw.com *.demo.nyklaw.com *.dev.nyklaw.com *.dzblvstaging.nyklaw.com *.f30c760d-99c7-42d0-a61e-f8f42fcb582f.nyklaw.com *.gitlab.nyklaw.com *.gjezcrds.nyklaw.com *.jon.nyklaw.com *.jpekavpn.nyklaw.com *.m.nyklaw.com *.novo.nyklaw.com nyklaw.com *.nyklaw.com *.rd.nyklaw.com *.rds.nyklaw.com *.rdweb.nyklaw.com *.sitemap.nyklaw.com *.sitemaps.nyklaw.com *.www.nyklaw.com *.ydvne8.nyklaw.com
*.api.slutwear.live *.bbs.slutwear.live *.hostmaster.slutwear.live *.m.slutwear.live *.mta-sts.slutwear.live slutwear.live *.slutwear.live *.www.slutwear.live
xn--bindezubehr-0fb.de *.xn--bindezubehr-0fb.de