DNS Gurus
Open Cached · just now
80/100 SECURITY SCORE

Certificate Information

Subject
CN=www.wanderkind.co
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
December 08, 2025
Valid Until
March 08, 2026 89 days
Public Key
RSA 2048 bit Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9A:99:E8:5C:90:8C:4F:6F:E7:0C:97:09:FE:E7:3C:BB:1E:2E:36:33:09:ED:76:FB:B7:32:E6:CA:9A:19:D4:34
Alternative Names
100 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Configured (Restricts certificate issuance)
Current Issuer
Authorized (Matches CAA policy)
Authorized CAs
letsencrypt.org
Recommendations
  • Consider using critical flag (flags=128) for stricter CAA enforcement
  • Consider adding 'iodef' records to receive notifications about unauthorized certificate issuance attempts
  • Consider adding 'issuewild' records to control wildcard certificate issuance

Subject Alternative Names

100 domains
www.archifishal.co.uk

Other domains in certificate

crm-dev.aadviklabs.com
hpbot.arvat.tech
www.asesoriasbya.cl
barscores.ca
bitstreak.in
oled.webos.blackdove.io
bordeauxpokerchartrons.org
beta.busca-bar.com
www.canererdogan.tech
www.cayfortuna.com
academy.circonus.com
ge.sre.co.id
link-sbx.tngdigital.com.my link-sit.tngdigital.com.my
debosz.com.pl
unimate.com.vn
conodoble.com pos.conodoble.com
deepskyspace.com
djxlabs.co
domesticapp.com
www.dwoth.com
easytalent.co.za
admin.emandai.net
empgames.cl
aravind.finmitr.in
firebreak.florentcaspar.com
frostchance.com www.frostchance.com
gabrielsblackwell.me
mobilityapp.generali.at
www.staging.vota.genvision.it
www.get-credit.link
hammadahamed.com
industrialfoodbta.com
auth.insurancetests.com
iservicio.com.mx
mta-sts.iservicio.net
login.itsmarvinmueller.com
test.keficommerce.com
www.kiklospaideia.com
old.requiem.kinzoku.one
shadowloop.lcenglish.cz
leserechner.de
www.linktradr.com
lokalimoveis.com.br
auth.analytics.ludi.one
app.nexusrange.com
system.edu.nugmyanmar.org
onlinecvs.xyz www.onlinecvs.xyz
optinexis.com
optools.opto.com.br
periyavafutureresearch.com
pushakruna.com
www.qriositynet.xyz
radiadoresrubens.com.mx
ramvotech.com
www.raxsade.com
unidade.redeideia.com.br
rksoftsolutions.in
rodanotech.ch
roletylider.eu
romanceflores.com.br
rongomaipapa.com
auth.safemloexam.com
saurabhgrewal.com
scopewit.pl
www.shokuteku.com
silverlininghopeline.com
chat.skooginvest.com
www.smic.com.mx
stg-brazino365.iframe.survive.bet
app.taia.io
tallerseguro.com
dashboard.open-earable.teco.edu
underwrites.tips.trade
cms.tonio.com
collect.test.unops.org
assets.strapi.usesofia.com
vladberesnev.com
admin-dev.rtm.vnlp.ai ecv.livechat.vnlp.ai livechat-test.vnlp.ai
payment-dev.waffle.city
auth.wagmo.io
www.wanderkind.co
wholistichealth.net
samby.wiseutils.com
xn--5ck8dw30mzp2c.1.xn--5gqr11h.net
xn--5nqz12ai91a6hi.com
orders.xn--72czas3dp8jpdrd.com
xn--910b14l21l7qd8qhzokupcp6bbh.com
xn--freibckerin-p8a.at
pitzgame.xn--jalapeolab-y9a.com
xn--mindscape-persnlichkeitstest-g2c.de
xn--v42bw2su7af51a.com
www.xn--zodewinter-y7a.com
zlite.zebull.in