DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=bonella.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 26, 2026
Valid Until
August 24, 2026 88 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
81:55:7E:4E:08:08:E3:F2:5C:71:BD:EC:64:B4:90:31:11:2B:14:B2:7F:5F:9C:36:3B:B0:D4:C5:01:93:95:5D
Alternative Names
89 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains
graveyardlovers.com *.graveyardlovers.com *.autodiscover.graveyardlovers.com *.cpanel.graveyardlovers.com *.hostmaster.graveyardlovers.com *.mail.graveyardlovers.com *.webdisk.graveyardlovers.com *.webmail.graveyardlovers.com *.www.graveyardlovers.com

Other domains in certificate

aesopline.com *.aesopline.com *.emp.aesopline.com *.sub.aesopline.com *.veritime.aesopline.com
apeture-online.co.uk *.apeture-online.co.uk
astrollogie.de *.astrollogie.de
bike-discaunt.de *.bike-discaunt.de
bilitoole-jmd.org *.bilitoole-jmd.org
blackhat.com.au *.blackhat.com.au
bonella.com *.bonella.com
cartridgechoice.com *.cartridgechoice.com *.ww38.cartridgechoice.com
*.cdn.cescort.com cescort.com *.cescort.com *.random.cescort.com
comical.com.au *.comical.com.au
contactar.it *.contactar.it *.www.contactar.it
endocrinology.co.za *.endocrinology.co.za *.random.endocrinology.co.za
firebrigades.com.au *.firebrigades.com.au *.ww25.firebrigades.com.au
ibooknook.com *.ibooknook.com
idfourme.de *.idfourme.de
kammerwinkel.de *.kammerwinkel.de
laviniahair.com *.laviniahair.com *.wildcard.laviniahair.com *.ww25.laviniahair.com *.ww38.laviniahair.com *.www.laviniahair.com
noteookbilliger.de *.noteookbilliger.de
privateinternetaccess.au *.privateinternetaccess.au
pyq.au *.pyq.au
*.goodiesandg.rains.com.au rains.com.au *.rains.com.au
*.crea.sgpt.au *.random.sgpt.au sgpt.au *.sgpt.au *.ww25.sgpt.au
ssri.au *.ssri.au *.ww17.ssri.au *.ww25.ssri.au
*.admin.techncolor.com *.rdupload.techncolor.com techncolor.com *.techncolor.com
tuerreck.de *.tuerreck.de
*.7d9b8f79-8ba4-4820-bea8-992c5eff8792.wsacg.xyz wsacg.xyz *.wsacg.xyz *.ww25.wsacg.xyz *.ww38.wsacg.xyz
www-lohnrechner.de *.www-lohnrechner.de
xn--edelstahlsplbecken-w6b.de *.xn--edelstahlsplbecken-w6b.de