DNS Gurus

SSL Verification Bypassed

The server's SSL certificate could not be verified. The analysis was completed using insecure mode. Data may be less reliable.

Reason:

Hostname Mismatch - certificate is issued for *.206.co.in, *.adidasfutbol.com, *.baldwin-irrigation-and-landscape.org, *.benughty.com, *.builderswarehousemelbourne.com.au, *.cathurbate.com, *.com0.com.br, *.couting.org, *.creationsmorning.com, not for webshotes.com

Cached · just now
73/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=haichuan.net
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
December 16, 2025
Valid Until
March 16, 2026 29 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
06:29:16:D2:FB:B7:91:A9:BD:26:C8:19:6B:FE:50:22:37:27:19:06:79:4B:B5:12:05:F2:9D:6B:6A:58:80:6E
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
adidasfutbol.com *.adidasfutbol.com *.random.adidasfutbol.com
baldwin-irrigation-and-landscape.org *.baldwin-irrigation-and-landscape.org
benughty.com *.benughty.com *.preview.benughty.com
builderswarehousemelbourne.com.au *.builderswarehousemelbourne.com.au *.ww38.builderswarehousemelbourne.com.au
cathurbate.com *.cathurbate.com *.random.cathurbate.com
206.co.in *.206.co.in *.new.206.co.in *.uat.206.co.in *.ww38.206.co.in
com0.com.br *.com0.com.br
couting.org *.couting.org *.my.couting.org
creationsmorning.com *.creationsmorning.com
crewitaly.com *.crewitaly.com *.hostmaster.crewitaly.com *.mx.crewitaly.com *.www.crewitaly.com
cubexmail.com *.cubexmail.com *.ww25.cubexmail.com
drycleanersbrisbane.com.au *.drycleanersbrisbane.com.au *.ww38.drycleanersbrisbane.com.au
ezc.com.au *.ezc.com.au *.ww38.ezc.com.au
fr44florida.com *.fr44florida.com
gamesales.com.au *.gamesales.com.au
haichuan.net *.haichuan.net
hitdesires.com *.hitdesires.com
i-french.com *.i-french.com
intuition-eunetwork.org *.intuition-eunetwork.org
jandmlandscapingmi.com *.jandmlandscapingmi.com
*.dev.liberta.agency liberta.agency *.liberta.agency
lupinsalad.com *.lupinsalad.com *.pipeline.lupinsalad.com *.ww38.lupinsalad.com
mites.com.au *.mites.com.au *.random.mites.com.au *.ww38.mites.com.au
osteriamejadgnint.com *.osteriamejadgnint.com *.ww38.osteriamejadgnint.com
parttimeemployment.au *.parttimeemployment.au
pavelrekun.dev *.pavelrekun.dev *.ww16.pavelrekun.dev
platoon.com.au *.platoon.com.au
riches.in *.riches.in
sharemates.au *.sharemates.au
sjjdavidsen.de *.sjjdavidsen.de
smartsync.com.au *.smartsync.com.au
*.random.sportspizza.us sportspizza.us *.sportspizza.us
tropicalsurfing.com *.tropicalsurfing.com
western-h20.com *.western-h20.com