Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=fomea.org
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
June 03, 2026
Valid Until
September 01, 2026
78 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
37:92:60:89:0F:2A:03:32:FD:16:E4:AB:92:DB:B0:EE:E7:36:D7:A3:86:08:17:3C:1D:AB:BE:C0:21:3B:C7:59
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
bdbdt.me
*.bdbdt.me
*.test.bdbdt.me
*.025247b0-4c2f-4a54-a9eb-ae64fc403091.bendtollc.com
*.6a99be22-79a5-408b-975b-b03bafa2c156.bendtollc.com
*.api.bendtollc.com
*.app.bendtollc.com
bendtollc.com
*.bendtollc.com
*.bff5e630-062e-4c72-a65c-65606b4ca98b.bendtollc.com
*.demo.bendtollc.com
*.remote.bendtollc.com
*.staging.bendtollc.com
*.test.bendtollc.com
*.vpn.bendtollc.com
*.wrvnzmarketing.bendtollc.com
*.www.bendtollc.com
*.admin.cguqfnklyril.art
*.app.cguqfnklyril.art
*.assets.cguqfnklyril.art
*.bjmqddftumapp.cguqfnklyril.art
*.blog.cguqfnklyril.art
*.c8o6jj.cguqfnklyril.art
cguqfnklyril.art
*.cguqfnklyril.art
*.demo.cguqfnklyril.art
*.dev.cguqfnklyril.art
*.dftumapp.cguqfnklyril.art
*.duqegblog.cguqfnklyril.art
*.fcqviassets.cguqfnklyril.art
*.test.cguqfnklyril.art
*.www.cguqfnklyril.art
*.3x1blw.digitalasset.now
*.api.digitalasset.now
*.app.digitalasset.now
*.assets.digitalasset.now
*.demo.digitalasset.now
*.dev.digitalasset.now
digitalasset.now
*.digitalasset.now
*.test.digitalasset.now
*.ubaytdemo.digitalasset.now
*.a.englishforkid.info
*.api.englishforkid.info
*.app.englishforkid.info
*.demo.englishforkid.info
*.dev.englishforkid.info
englishforkid.info
*.englishforkid.info
*.members.englishforkid.info
*.r78sk0.englishforkid.info
*.test.englishforkid.info
*.testing.englishforkid.info
*.cloud.envidia.it
*.dashboard.envidia.it
*.data.envidia.it
*.dev.envidia.it
*.email.envidia.it
envidia.it
*.envidia.it
*.imap.envidia.it
*.mail.envidia.it
*.mx.envidia.it
*.mymail.envidia.it
*.notexistsapi.envidia.it
*.officevpn.envidia.it
*.rdweb.envidia.it
*.report.envidia.it
*.smtp.envidia.it
*.ssl.envidia.it
*.superset.envidia.it
*.webmail.envidia.it
fomea.org
*.fomea.org
*.help.fomea.org
garagedbsautorosult.com
*.garagedbsautorosult.com
*.test.garagedbsautorosult.com
*.admin.getletbot.art
*.api.getletbot.art
*.app.getletbot.art
*.assets.getletbot.art
*.demo.getletbot.art
*.dev.getletbot.art
getletbot.art
*.getletbot.art
*.l2so6e.getletbot.art
*.selqddev.getletbot.art
*.test.getletbot.art
*.www.getletbot.art
Other domains in certificate