Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=myfundlify.co
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 31, 2026
Valid Until
May 01, 2026
87 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D5:E8:4F:95:D3:F8:BC:F6:7E:27:B7:45:AC:85:06:09:4C:D3:9F:9B:6C:07:5B:DF:F6:5B:39:8E:32:E2:B6:1F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
blzee.com
*.blzee.com
189026.cc
*.189026.cc
197623.cc
*.197623.cc
365dianwan.com
*.365dianwan.com
455aa.com
*.455aa.com
64984.locker
*.64984.locker
76217.loan
*.76217.loan
828302.com
*.828302.com
92598.me
*.92598.me
978526.cc
*.978526.cc
akgij.gdn
*.akgij.gdn
algorithmise.com
*.algorithmise.com
aliaslink.com
*.aliaslink.com
artboy.info
*.artboy.info
artcharliebaniya.com
*.artcharliebaniya.com
betahope.com
*.betahope.com
birajinternationalhotel.com
*.birajinternationalhotel.com
bodybalancetesting.com
*.bodybalancetesting.com
brbrealty.com
*.brbrealty.com
brilliance.so
*.brilliance.so
brilliantmeta.com
*.brilliantmeta.com
check.cheap
*.check.cheap
chinawordstudy.com
*.chinawordstudy.com
chippewa-river-trail.com
*.chippewa-river-trail.com
cmx27.top
*.cmx27.top
crisisinternational.com
*.crisisinternational.com
devdomain3.xyz
*.devdomain3.xyz
djlawassociates.com
*.djlawassociates.com
dogdundee.com
*.dogdundee.com
dosjs.com
*.dosjs.com
dsgbd.com
*.dsgbd.com
dubailuxurycruise117173.icu
*.dubailuxurycruise117173.icu
dubaivoucher.me
*.dubaivoucher.me
dveloppementdecarrire749840.icu
*.dveloppementdecarrire749840.icu
dxsnr.gdn
*.dxsnr.gdn
e-mathlearning.com
*.e-mathlearning.com
ecstasy.to
*.ecstasy.to
eirjgpv522.vip
*.eirjgpv522.vip
electric-car-deals742213.icu
*.electric-car-deals742213.icu
englishlanguagelearning192954.icu
*.englishlanguagelearning192954.icu
epichope.org
*.epichope.org
ethcharity.com
*.ethcharity.com
fgydi1242.com
*.fgydi1242.com
myfundlify.co
*.myfundlify.co
theflowerman.org
*.theflowerman.org
Other domains in certificate