System status

● All systems operational

Last checked 2026-06-22 18:44 UTC · auto-refreshes every minute · JSON

Components

Web applicationServing normally

DatabaseConnected

DNS-leak responderOperational

GeoIP intelligenceLoaded · updated 0d ago

HTTPS / TLSValid on all domains

Uptime

Application (since last deploy)4h 17m

Server6d 4h 9m

Availability · 90 days

100.00%

uptime over the last 90 days · checked every 5 min

operationaldegradedoutageno data

No incidents recorded in this window.

Domains & certificates

Both domains serve the same site from the same server, each with its own HTTPS certificate. tools-inter.actor is canonical; 77.tools is a fully-supported alias.

tools-inter.actorprimarycert valid → 2026-09-06

Certificate SHA-256CA:4A:68:89:2C:FF:60:F5:10:EE:27:D1:AB:7A:8D:D2:7C:3A:E6:EF:39:9A:D9:20:1A:8E:DF:94:20:11:1C:47

Public-key pin · SPKI SHA-256 (base64)2Tdmh58uFq6AApCtmTM/DKxWHq/gv4EocNXeU2QxzT0=

IssuerLet's Encrypt

Certificate Transparency logs ↗

77.toolsaliascert valid → 2026-09-20

Certificate SHA-256CE:C6:6F:D8:83:AA:45:42:18:23:C2:65:73:64:CD:01:8E:56:D3:8C:6A:5C:E8:45:64:45:11:50:F7:D0:00:BE

Public-key pin · SPKI SHA-256 (base64)TvUFDsLTcudeS1+B1/0iUjgZT353k5GR1jWbGJyDn0M=

IssuerLet's Encrypt

Certificate Transparency logs ↗

Verify any domain: click the padlock → Certificate, or run echo | openssl s_client -connect <domain>:443 2>/dev/null | openssl x509 -noout -fingerprint -sha256 and compare the SHA-256 above.

Security headers

Sent on every response. Confirm them yourself in your browser’s DevTools → Network → Response Headers.

HTTPS enforced (HSTS)max-age=31536000; includeSubDomains

Content Security Policyactive

Clickjacking protection (frame deny)DENY

MIME-sniffing protectionnosniff

Referrer policystrict-origin-when-cross-origin

Permissions policygeolocation=(), microphone=(), camera=()

Server software banner hiddenyes

Content-Security-Policy

default-src 'self'; script-src 'self' 'unsafe-inline'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' https://fonts.gstatic.com; img-src 'self' data: blob:; connect-src 'self' https://*.dns.tools-inter.actor stun:stun.l.google.com:19302 stun:stun1.l.google.com:19302; frame-src https://www.openstreetmap.org; object-src 'none'; frame-ancestors 'none'; base-uri 'self'

Integrity & verification

Homepage integrity hash

SHA-256 of the served homepage (identical on both domains)0B:65:A5:BE:A9:75:7D:D0:76:7D:D8:1C:F0:CF:64:6F:E8:48:EB:80:47:47:0B:29:D7:2C:63:6A:3A:56:F1:61

Reproduce it: curl -s https://tools-inter.actor/ | sha256sum (or https://77.tools/) — it should match. Our client code is open source ↗ so you can audit what runs.

What this proves. The TLS fingerprints and Certificate Transparency logs are verified independently of our server, so they reliably catch a man-in-the-middle or a swapped certificate on either domain. The homepage hash detects changes to what we serve — cross-check it against our public source, since a fully compromised server could in theory change both the page and this number.

Host

NetworkContabo · dedicated VPS

LocationOberasbach (Kreutles), Germany

IP address13.140.154.198