Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=scholarshipgeeks.com
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
May 30, 2026
Valid Until
August 28, 2026
78 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8A:1D:E8:FF:0B:22:35:8B:8A:29:9F:4E:98:B4:FA:F2:C1:F7:27:C1:75:9E:7D:15:E0:03:B8:77:07:B8:DA:2E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
bbroom.online
*.bbroom.online
*.ww17.bbroom.online
9fobet.cc
*.9fobet.cc
advancedgoddess.shop
*.advancedgoddess.shop
*.hwflwb.advancedgoddess.shop
advertise-web.org
*.advertise-web.org
*.accf.amcf6666.top
amcf6666.top
*.amcf6666.top
bed-and-breakfast-wieler.de
*.bed-and-breakfast-wieler.de
*.app.brbet70.win
brbet70.win
*.brbet70.win
*.dev.brbet70.win
*.new.brbet70.win
cdnspin88resmi.org
*.cdnspin88resmi.org
*.sandbox.cdnspin88resmi.org
dnsgroup.co
*.dnsgroup.co
*.random.dnsgroup.co
electing.ca
*.electing.ca
*.hostmaster.electing.ca
*.mail.electing.ca
*.ns1.electing.ca
*.www.electing.ca
fonymeubles.be
*.fonymeubles.be
*.ww38.fonymeubles.be
*.245.fordcvp.com
*.32.fordcvp.com
fordcvp.com
*.fordcvp.com
*.staging.fordcvp.com
homepilachu.online
*.homepilachu.online
*.n0wcgws4wcs8k4sggk80owc4.homepilachu.online
incomecalculator.in
*.incomecalculator.in
*.remote.incomecalculator.in
*.www.incomecalculator.in
lamtec.io
*.lamtec.io
*.ww38.lamtec.io
*.hostmaster.losefat.com.au
losefat.com.au
*.losefat.com.au
*.www.losefat.com.au
*.cpcontacts.manaratacademy.co.uk
manaratacademy.co.uk
*.manaratacademy.co.uk
*.parents.manaratacademy.co.uk
*.student.manaratacademy.co.uk
mcnaur.com
*.mcnaur.com
mdv07.com
*.mdv07.com
murzadelix.sbs
*.murzadelix.sbs
*.32.nullbrawl.io
nullbrawl.io
*.nullbrawl.io
*.uat.nullbrawl.io
*.www.nullbrawl.io
peliflix.org
*.peliflix.org
powerfulseo.com
*.powerfulseo.com
rs90705.cc
*.rs90705.cc
scholarshipgeeks.com
*.scholarshipgeeks.com
stagen69.pl
*.stagen69.pl
tyre-br-zl1.today
*.tyre-br-zl1.today
vexamorph.pro
*.vexamorph.pro
viqem.my
*.viqem.my
*.m.xn--fiqs8skq1aj1c.com
*.sitemaps.xn--fiqs8skq1aj1c.com
xn--fiqs8skq1aj1c.com
*.xn--fiqs8skq1aj1c.com
Other domains in certificate