Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=sctdtc.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 01, 2026
Valid Until
May 02, 2026
82 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7A:D5:CE:41:64:04:11:FA:1C:EC:34:BA:0F:74:D5:89:FD:EC:B9:9B:79:00:82:3D:B8:3B:39:86:10:8E:E5:FA
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
88 domains
bodamia.com
*.bodamia.com
*.forum.bodamia.com
146marsbahis.com
*.146marsbahis.com
*.jenkins.146marsbahis.com
*.mobile.146marsbahis.com
*.stats.146marsbahis.com
aaronsrents.com
*.aaronsrents.com
*.ww17.aaronsrents.com
*.airink.cloudrecruit.io
*.airlink.cloudrecruit.io
cloudrecruit.io
*.cloudrecruit.io
*.cticc.cloudrecruit.io
*.dailymaverick.cloudrecruit.io
*.dainferncollege.cloudrecruit.io
*.dataorbis.cloudrecruit.io
*.enaexafricajobs.cloudrecruit.io
*.graylink.cloudrecruit.io
*.hellogroup.cloudrecruit.io
*.highburymedia.cloudrecruit.io
*.ngqubusinisolutions.cloudrecruit.io
*.nosa.cloudrecruit.io
*.ooba.cloudrecruit.io
*.pnp.cloudrecruit.io
*.pps.cloudrecruit.io
*.quantifyyourfuture.cloudrecruit.io
*.stanchionpayments.cloudrecruit.io
*.stpeters.cloudrecruit.io
*.unitedexports.cloudrecruit.io
deedon.com
*.deedon.com
*.gprttswsfy.deedon.com
*.yingguozong.deedon.com
*.admin.discounts-occasions-blogs.com
*.app.discounts-occasions-blogs.com
*.demo.discounts-occasions-blogs.com
discounts-occasions-blogs.com
*.discounts-occasions-blogs.com
*.random.discounts-occasions-blogs.com
*.ww25.discounts-occasions-blogs.com
*.ww38.discounts-occasions-blogs.com
health-plus.online
*.health-plus.online
*.ww12.health-plus.online
*.fortinet.irinel.com
irinel.com
*.irinel.com
*.1eoh4ov6kkyn5htt.jelmoli.online
*.blog.jelmoli.online
jelmoli.online
*.jelmoli.online
*.kafka-ui.jelmoli.online
*.remote.jelmoli.online
*.ug3laf55scnceg1d.jelmoli.online
*.ww25.jelmoli.online
netbean.org
*.netbean.org
*.pay.netbean.org
*.ww6.netbean.org
*.4087196642.news-situfi.com
*.a52d88844c.news-situfi.com
*.comd13cb4e8ce.news-situfi.com
*.comwww.news-situfi.com
news-situfi.com
*.news-situfi.com
*.random.news-situfi.com
ochse.com
*.ochse.com
*.ww25.ochse.com
salah.life
*.salah.life
*.tx.salah.life
*.www.salah.life
*.m.sctdtc.com
sctdtc.com
*.sctdtc.com
*.vpn.sctdtc.com
*.beta.ssiacorp.com
ssiacorp.com
*.ssiacorp.com
*.ww25.ssiacorp.com
*.ww38.ssiacorp.com
*.25fe944f-ff07-4af8-97c1-bb768165e61c.sunsetaudio.tech
sunsetaudio.tech
*.sunsetaudio.tech
Other domains in certificate