SSL Certificate Analysis for 1-gom.net - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Certificate Information

Subject

CN=bizniz.online

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

February 09, 2026

Valid Until

May 10, 2026 89 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

11:4C:06:12:81:2B:93:73:5C:98:9B:6F:01:96:23:84:9E:8F:CF:22:49:E4:79:0E:49:8D:24:FC:89:58:BA:20

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

1-gom.net *.1-gom.net *.news.1-gom.net *.staging.1-gom.net

Other domains in certificate

alertsmails.com *.alertsmails.com *.ww38.alertsmails.com

amd.today *.amd.today *.c.amd.today *.cpcontacts.amd.today *.report.amd.today

*.admin.aprendiendoingles.com *.api.aprendiendoingles.com aprendiendoingles.com *.aprendiendoingles.com *.arsplay1.aprendiendoingles.com *.backup.aprendiendoingles.com *.forum.aprendiendoingles.com *.smtp.aprendiendoingles.com *.test.aprendiendoingles.com *.ww16.aprendiendoingles.com

betforfree.com *.betforfree.com *.random.betforfree.com

*.best.bizniz.online bizniz.online *.bizniz.online *.cpanel.bizniz.online *.webdisk.bizniz.online

bubtirazjs.com *.bubtirazjs.com

deusfiel.site *.deusfiel.site

*.2e1e1859-173f-4f6b-8228-fa37e66ffda2.explorecreativehub.com *.779ad3a9-bb14-4e4d-8fa6-943886b0ceba.explorecreativehub.com *.doh1.explorecreativehub.com explorecreativehub.com *.explorecreativehub.com *.mtilzintranet.explorecreativehub.com *.shop.explorecreativehub.com *.store.explorecreativehub.com

*.admin.getbrandstory.com *.assets.getbrandstory.com *.contact.getbrandstory.com *.demo.getbrandstory.com getbrandstory.com *.getbrandstory.com *.hostmaster.getbrandstory.com *.info.getbrandstory.com *.portal.getbrandstory.com *.shop.getbrandstory.com *.staging.getbrandstory.com *.vdi1.getbrandstory.com *.vpn.getbrandstory.com

gkolumorvw.com *.gkolumorvw.com

height.live *.height.live *.sitemap.height.live

jasawin.xyz *.jasawin.xyz *.mobile.jasawin.xyz

maxwinfeedbetrtp.click *.maxwinfeedbetrtp.click

qouka.com *.qouka.com

rtpsenior4dmenyala.click *.rtpsenior4dmenyala.click

*.random.savoyhotel.net savoyhotel.net *.savoyhotel.net *.ww17.savoyhotel.net *.ww38.savoyhotel.net

sombras.bet *.sombras.bet

*.backup.soundproofoffice.com soundproofoffice.com *.soundproofoffice.com

stbux100.com *.stbux100.com

wwwwwwwwwwwwwwwwwwww.com *.wwwwwwwwwwwwwwwwwwww.com *.youtube.wwwwwwwwwwwwwwwwwwww.com

*.random.yepschooldirect.co.uk yepschooldirect.co.uk *.yepschooldirect.co.uk

*.random.zahnfleischaufbau.de zahnfleischaufbau.de *.zahnfleischaufbau.de