Open
Cached
·
just now
75/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=leapfrog-ssl-47.gcs-web.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 21, 2026
Valid Until
July 20, 2026
74 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
10:F0:F2:96:8A:81:BA:10:36:32:8E:CB:4B:FC:BB:B1:3E:0C:BE:6E:98:F8:79:3B:A5:09:14:03:52:AA:15:CF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
88 domains
aadibio.gcs-web.com
adagiotx.gcs-web.com
aerofarms.gcs-web.com
arteris.gcs-web.com
aumbiosciences.gcs-web.com
brandywinerealtytrust.gcs-web.com
breadfinancialbfp.gcs-web.com
cariboubio.gcs-web.com
cellebrite.gcs-web.com
clarus.gcs-web.com
composecure.gcs-web.com
cswindustrials.gcs-web.com
cytekbio.gcs-web.com
garrettmotion.gcs-web.com
geron.gcs-web.com
haoxihealthtechnology.gcs-web.com
htb.gcs-web.com
immuneering.gcs-web.com
inveatx.gcs-web.com
investordayavinc.gcs-web.com
lambweston.gcs-web.com
leapfrog-ssl-47.gcs-web.com
nalumed.gcs-web.com
netease.gcs-web.com
neuroneticsinc.gcs-web.com
portagebiotech.gcs-web.com
proceptbiorobotics.gcs-web.com
rallybio.gcs-web.com
riskified.gcs-web.com
sabrestrategicacquisitioncorp.gcs-web.com
salariuspharma.gcs-web.com
securitynational.gcs-web.com
southernstates.gcs-web.com
tenayatherapeutics.gcs-web.com
tremorinternationalltd.gcs-web.com
trevitherapeutics.gcs-web.com
usare.gcs-web.com
victoriassecret.gcs-web.com
vividion.gcs-web.com
vividseats.gcs-web.com
voltagex.gcs-web.com
waitr.gcs-web.com
wcgclinical.gcs-web.com
windtreetx.gcs-web.com
yimutian.gcs-web.com
ir.aadibio.com
investors.adagiotx.com
investors.aerofarms.com
ir.arteris.com
ir.aumbiosciences.com
investoropenhouse2025.avinc.com
investor.brandywinerealty.com
bfpresents.breadfinancial.com
investor.cariboubio.com
investors.cellebrite.com
ir.composecure.com
ir.csw.com
investors.cytekbio.com
investors.decoytx.com
investors.garrettmotion.com
ir.geron.com
ir.haoximedia.com
ir.htb.com
ir.immuneering.com
investors.inveatx.com
investors.lambweston.com
investors.nalumed.com
ir.nalumed.com
ir.netease.com
ir.neuronetics.com
investors.nexxen.com
ir.portagebiotech.com
ir.procept-biorobotics.com
investors.rallybio.com
ir.riskified.com
investors.sabrestrategicacquisitioncorp.com
investor.securitynational.com
investors.tenayatherapeutics.com
investor.tremorinternational.com
investors.tremorinternational.com
ir.trevitherapeutics.com
investors.usare.com
www.victoriassecretandco.com
ir.vividion.com
investors.vividseats.com
ir.voltage-x.com
investors.wcgclinical.com
ir.windtreetx.com
Other domains in certificate