DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=chrisheart.at
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 23, 2026
Valid Until
August 21, 2026 75 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CA:F6:D1:63:91:45:9D:8A:52:A4:A5:EB:9C:27:F2:BD:1C:D9:D5:C2:65:6F:57:3D:0B:5E:47:05:77:D3:87:C0
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
web3.spot *.web3.spot *.api.web3.spot *.assets.web3.spot *.backup.web3.spot *.dashboard.web3.spot *.dev.web3.spot *.git.web3.spot *.mail.web3.spot *.mailer.web3.spot *.marketing.web3.spot *.ofqwuzvx.web3.spot *.qa.web3.spot *.secure.web3.spot *.staging.web3.spot *.stg.web3.spot *.uat.web3.spot *.v1.web3.spot *.v2.web3.spot *.web.web3.spot

Other domains in certificate

albo-tradate.it *.albo-tradate.it
alu-unique.at *.alu-unique.at
assicurazioniroberti.it *.assicurazioniroberti.it
avivaigrejabatista.org *.avivaigrejabatista.org
bergfried-westendorf.at *.bergfried-westendorf.at
boutiquecz.ca *.boutiquecz.ca
brima-home.at *.brima-home.at
carolijasvjetlosti.com *.carolijasvjetlosti.com
cheating.gg *.cheating.gg
chihuahuas-vom-faakersee.at *.chihuahuas-vom-faakersee.at
chrisheart.at *.chrisheart.at
cmpandreoli.it *.cmpandreoli.it
consulentefaidate.it *.consulentefaidate.it
dachprofi5.at *.dachprofi5.at
dekoningemc.ca *.dekoningemc.ca
dieneuewirklichkeit.at *.dieneuewirklichkeit.at
fboxtv.to *.fboxtv.to
giuseppebagliorappresentanze.it *.giuseppebagliorappresentanze.it
guidapolesine.it *.guidapolesine.it
handyshop-scs.at *.handyshop-scs.at
hitclub1.bet *.hitclub1.bet
hitclubwin.top *.hitclubwin.top
knihy-mlm.cz *.knihy-mlm.cz
scroller.io *.scroller.io *.www.scroller.io
slfix.to *.slfix.to
*.41c1f7c4-2bf6-434a-a7ab-cad56dd5e5ff.trips.bot *.4a774310-028b-4001-bd3c-bea384ee104a.trips.bot *.api.trips.bot *.app.trips.bot *.aqbvjapp.trips.bot *.baa4dcae-ac30-4516-bf80-f334a80bfa87.trips.bot *.ddd5d903-344b-4969-94b9-d5cc99eb3cb4.trips.bot *.qw74n8.trips.bot trips.bot *.trips.bot *.vhfgyjmo.trips.bot *.www.trips.bot
vtmv-gr-ef.at *.vtmv-gr-ef.at
yycgaragebuilder.ca *.yycgaragebuilder.ca
*.com-tz8.zhuzhanb32.shop zhuzhanb32.shop *.zhuzhanb32.shop