DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=x-remonstrance.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 14, 2026
Valid Until
July 13, 2026 66 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0B:3A:AE:8A:78:25:06:0E:7C:4B:90:05:A3:BC:FC:16:04:02:63:59:5B:84:B7:95:CF:0C:C9:59:B7:EC:5F:20
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
gcapitalone.com *.gcapitalone.com *.gsafe.gcapitalone.com *.net.gcapitalone.com *.student.gcapitalone.com *.wordpress.gcapitalone.com

Other domains in certificate

*.58u119.avlulu756.xyz *.8g6zx5.avlulu756.xyz *.8u9hryj.avlulu756.xyz avlulu756.xyz *.avlulu756.xyz *.beta.avlulu756.xyz *.c0iavk.avlulu756.xyz *.i1rq06.avlulu756.xyz *.iiwdfq.avlulu756.xyz *.vzqhba.avlulu756.xyz *.ww25.avlulu756.xyz
chicoflix.vip *.chicoflix.vip *.kzxwrevents.chicoflix.vip
funkyou.it *.funkyou.it *.report.funkyou.it *.sql.funkyou.it *.staging.funkyou.it *.www.funkyou.it
*.autodiscover.havenhairoc.com *.cpcalendars.havenhairoc.com havenhairoc.com *.havenhairoc.com *.webdisk.havenhairoc.com *.webmail.havenhairoc.com *.wildcard.havenhairoc.com *.www.havenhairoc.com
*.930c9d65-4e3d-4117-bc82-92d1052a443b.k3176.com *.admin.k3176.com *.api.k3176.com *.dev.k3176.com *.insights.k3176.com k3176.com *.k3176.com *.m.k3176.com *.remote.k3176.com *.test.k3176.com *.wap.k3176.com
ledito.me *.ledito.me *.stats.ledito.me *.ww25.ledito.me
*.api.terzetto.com *.app.terzetto.com *.backend.terzetto.com *.bi.terzetto.com *.dev.terzetto.com *.hostmaster.terzetto.com *.lime.terzetto.com *.mail.terzetto.com *.mail2.terzetto.com terzetto.com *.terzetto.com
*.0645e32d-1d55-4d83-b404-35fc03254ed3.x-remonstrance.com *.11e1b20b-f583-4e63-a836-19c99116c9ad.x-remonstrance.com *.a.x-remonstrance.com *.app.x-remonstrance.com *.board.x-remonstrance.com *.c99b78c3-5e8d-48f8-90c2-4c1f2e4e153a.x-remonstrance.com *.cloud.x-remonstrance.com *.connect.x-remonstrance.com *.demo.x-remonstrance.com *.mail.x-remonstrance.com *.marketing.x-remonstrance.com *.portal1.x-remonstrance.com *.rd.x-remonstrance.com *.rds.x-remonstrance.com *.rdweb.x-remonstrance.com *.remote.x-remonstrance.com *.remoteapps2.x-remonstrance.com *.secure.x-remonstrance.com *.server.x-remonstrance.com *.ssl.x-remonstrance.com *.staging.x-remonstrance.com *.stg.x-remonstrance.com *.uat.x-remonstrance.com *.virtualaccess3.x-remonstrance.com *.vpn.x-remonstrance.com *.vps.x-remonstrance.com *.web.x-remonstrance.com *.whm.x-remonstrance.com x-remonstrance.com *.x-remonstrance.com