Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=thecolblas.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 20, 2026
Valid Until
August 18, 2026
72 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D8:2A:B6:69:62:D7:E3:FD:81:24:36:45:26:97:87:6F:B8:F0:20:5C:AB:DF:EB:A5:1A:6D:EF:71:2B:25:80:D8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
80 domains
thecolblas.com
*.thecolblas.com
*.5c-94e1-461773c60591.thecolblas.com
*.6d6bfea2-cf47-4567-b146-7d099f171e20.thecolblas.com
*.867c68c1-66e2-42ba-bcf0-b568da1c6766.thecolblas.com
*.api.thecolblas.com
*.app.thecolblas.com
*.dnn3b9t5kdgp.thecolblas.com
*.gddosdemo.thecolblas.com
*.staging.thecolblas.com
*.tbtrqw.thecolblas.com
*.vpn.thecolblas.com
*.www.thecolblas.com
*.a.giftcrm.info
*.a5a3fc46-3016-4eb3-9639-a4c2467f3705.giftcrm.info
*.api.giftcrm.info
*.app.giftcrm.info
giftcrm.info
*.giftcrm.info
*.www.giftcrm.info
*.0.usatod.com
*.2.usatod.com
*.6.usatod.com
*.7.usatod.com
*.admin.usatod.com
*.aggieswire.usatod.com
*.analytic.usatod.com
*.analytics.usatod.com
*.api.usatod.com
*.argo.usatod.com
*.assets.usatod.com
*.bi.usatod.com
*.blogs.usatod.com
*.console.usatod.com
*.coupon.usatod.com
*.dash.usatod.com
*.dashboard.usatod.com
*.demo.usatod.com
*.eb19.usatod.com
*.explore.usatod.com
*.feeds.usatod.com
*.feeds2.usatod.com
*.games.usatod.com
*.httpsmall.usatod.com
*.internal.usatod.com
*.jbqwiweb19.usatod.com
*.m.usatod.com
*.mall.usatod.com
*.mitjudxa.usatod.com
*.mta-sts.usatod.com
*.notexistsadmin.usatod.com
*.notexistsww5.usatod.com
*.notexistsww8.usatod.com
*.notexistswww70.usatod.com
*.o14vue.usatod.com
*.orkflow.usatod.com
*.payment.usatod.com
*.pipeline.usatod.com
*.random.usatod.com
*.redash.usatod.com
*.report.usatod.com
*.reporting.usatod.com
*.rss.usatod.com
*.sitemap.usatod.com
*.staging.usatod.com
*.status.usatod.com
*.superset.usatod.com
*.test.usatod.com
usatod.com
*.usatod.com
*.vskpvgames.usatod.com
*.workflow.usatod.com
*.ww3.usatod.com
*.ww5.usatod.com
*.ww6.usatod.com
*.ww8.usatod.com
*.www.usatod.com
*.www6.usatod.com
*.www70.usatod.com
*.www77.usatod.com
Other domains in certificate