Open
Cached
·
just now
79/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=goldenblogoffers.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 01, 2026
Valid Until
May 02, 2026
74 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9B:FD:4E:41:C4:A7:3A:30:ED:B9:1B:A5:05:9C:3A:A4:AB:EF:AD:B8:14:D9:4F:87:71:0B:59:BC:35:4F:05:10
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
staticstone.com
*.staticstone.com
goldenblogoffers.com
*.goldenblogoffers.com
gossipwavenext.live
*.gossipwavenext.live
gptpath.com
*.gptpath.com
gttp.dev
*.gttp.dev
gxphu1476.com
*.gxphu1476.com
heyexacttempo.com
*.heyexacttempo.com
homelawnandsnow.com
*.homelawnandsnow.com
jeemy.gdn
*.jeemy.gdn
joinexacttempo.com
*.joinexacttempo.com
leadhubnow.com
*.leadhubnow.com
loanfast632180.icu
*.loanfast632180.icu
ltn888.com
*.ltn888.com
lvfuvc.com
*.lvfuvc.com
mazika.shop
*.mazika.shop
mountclear.com.au
*.mountclear.com.au
oncogineloscabos.com
*.oncogineloscabos.com
orvelottqcssmbtd.com
*.orvelottqcssmbtd.com
oyesmarket.com
*.oyesmarket.com
pavelconsulting.com
*.pavelconsulting.com
persiancatrescue.com
*.persiancatrescue.com
platinumdom.com
*.platinumdom.com
pmandrrecap.com
*.pmandrrecap.com
polk-a-dot.com
*.polk-a-dot.com
portsmouthartsguild.org
*.portsmouthartsguild.org
premiercreditbank.com
*.premiercreditbank.com
prosperity.net.au
*.prosperity.net.au
pwver.bid
*.pwver.bid
qrmake.com
*.qrmake.com
rebelcash.com
*.rebelcash.com
reinigungsfirma-agent.click
*.reinigungsfirma-agent.click
rgo.biz
*.rgo.biz
rpodv.net
*.rpodv.net
sdkandroz.com
*.sdkandroz.com
seven77.xyz
*.seven77.xyz
sipscon.com
*.sipscon.com
tallinnfood.com
*.tallinnfood.com
tcmps.shop
*.tcmps.shop
tdfc.org
*.tdfc.org
testing-mobile-147677060.click
*.testing-mobile-147677060.click
transitioning.com.au
*.transitioning.com.au
transportation-goods-540225689.click
*.transportation-goods-540225689.click
trybullseyeedu.com
*.trybullseyeedu.com
tyt16.top
*.tyt16.top
ucewm.gdn
*.ucewm.gdn
Other domains in certificate