DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=gaggia.online
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
January 25, 2026
Valid Until
April 25, 2026 63 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BA:B0:F7:6A:15:94:3F:ED:83:2B:5D:9A:2D:DC:E3:2F:83:55:EE:64:10:21:A5:B4:2B:B1:A0:D6:C7:26:20:8C
Alternative Names
89 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains
xgz.de *.xgz.de *.mailings.xgz.de

Other domains in certificate

bathers.com.au *.bathers.com.au *.static.bathers.com.au
bolsadopovo.com.br *.bolsadopovo.com.br *.ww16.bolsadopovo.com.br *.ww25.bolsadopovo.com.br *.ww38.bolsadopovo.com.br
christmasdecoration.com.au *.christmasdecoration.com.au *.random.christmasdecoration.com.au
chrome.com.au *.chrome.com.au *.google.chrome.com.au
cookbookbrendaganttbook.com *.cookbookbrendaganttbook.com
cubecontrol.com *.cubecontrol.com *.random.cubecontrol.com
francescas.online *.francescas.online
freebickz.xyz *.freebickz.xyz *.hostmaster.freebickz.xyz
gaggia.online *.gaggia.online
gedb.org *.gedb.org
gkdcloud.shop *.gkdcloud.shop *.ww25.gkdcloud.shop
ipnic.net *.ipnic.net
legendaryracers.com.au *.legendaryracers.com.au *.random.legendaryracers.com.au
mabt.net *.mabt.net *.random.mabt.net
marinerfinannce.com *.marinerfinannce.com *.random.marinerfinannce.com
maturinzonalibre.com *.maturinzonalibre.com *.random.maturinzonalibre.com
milduradetailing.com.au *.milduradetailing.com.au
opticsplantet.com *.opticsplantet.com *.ww1.opticsplantet.com
past.com.au *.past.com.au *.timelines.past.com.au
plazahogar.com *.plazahogar.com
premiados.com *.premiados.com *.ww43.premiados.com
programbisa.com *.programbisa.com *.ww.programbisa.com
projectbluedigitalmarketing.au *.projectbluedigitalmarketing.au
streamingwomen.click *.streamingwomen.click *.whm.streamingwomen.click
*.random.syncchrony.com syncchrony.com *.syncchrony.com
tassiedevils.au *.tassiedevils.au
thestreamast.su *.thestreamast.su
tsskavav.com *.tsskavav.com
*.random.turbotimers.com.au turbotimers.com.au *.turbotimers.com.au
tvruckus.com *.tvruckus.com *.ww17.tvruckus.com
utma4d2.store *.utma4d2.store
*.random.windowframe.com.au windowframe.com.au *.windowframe.com.au