Open
Cached
·
just now
79/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=cgdstudio.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 05, 2026
Valid Until
May 06, 2026
71 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8D:1D:09:45:90:D0:AD:7E:D0:34:FC:3D:50:35:12:D5:96:85:95:58:34:C5:12:2A:6F:8A:25:BA:4C:27:F8:C9
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
cgdstudio.com
*.cgdstudio.com
champneyssparituals.com
*.champneyssparituals.com
ciberprogramzone.com
*.ciberprogramzone.com
ciclismofem.com
*.ciclismofem.com
claniodealairz.shop
*.claniodealairz.shop
classicweddingschoice.beauty
*.classicweddingschoice.beauty
classifiedadspace.com
*.classifiedadspace.com
cleogaming.xyz
*.cleogaming.xyz
cloudhero.co
*.cloudhero.co
codmoniiosdalub.cyou
*.codmoniiosdalub.cyou
colatris.com
*.colatris.com
coloradoinnovationnetwork.com
*.coloradoinnovationnetwork.com
colorblind.us
*.colorblind.us
competenciavasca.org
*.competenciavasca.org
contractorsdirectinsurance.com
*.contractorsdirectinsurance.com
cosmorider524.info
*.cosmorider524.info
crosssnap.com
*.crosssnap.com
csfailose.com
*.csfailose.com
ct2008.com
*.ct2008.com
culturallyrichvacation.live
*.culturallyrichvacation.live
cw724.top
*.cw724.top
da1b.mx
*.da1b.mx
debet.broker
*.debet.broker
debet.earth
*.debet.earth
debet.partners
*.debet.partners
debet.training
*.debet.training
defaihk.com
*.defaihk.com
dhilf.biz
*.dhilf.biz
dkccom.com
*.dkccom.com
dmafdphg.com
*.dmafdphg.com
professional-fiber-216471276.click
*.professional-fiber-216471276.click
professional-pet-389862171.click
*.professional-pet-389862171.click
respect-consult.info
*.respect-consult.info
sukakartu.com
*.sukakartu.com
swisscurrentnewstoday.com
*.swisscurrentnewstoday.com
tqznv.co
*.tqznv.co
urbantravelodyssey.live
*.urbantravelodyssey.live
va659.top
*.va659.top
wccwl.app
*.wccwl.app
wcewebo684.vip
*.wcewebo684.vip
weedweb.co
*.weedweb.co
whirlpools.it
*.whirlpools.it
xba257.com
*.xba257.com
yourbesttip.info
*.yourbesttip.info
ytz77.top
*.ytz77.top
Other domains in certificate