Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=desjardina.com
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
June 03, 2026
Valid Until
September 01, 2026
72 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
36:09:FC:2E:C3:A8:77:CC:27:EE:37:02:C0:F5:6C:55:CC:9C:B6:C7:25:CF:AB:1E:08:14:7E:B3:36:00:2A:EE
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
datagame.xyz
*.datagame.xyz
*.kwid9.datagame.xyz
boisewatches.com
*.boisewatches.com
buddhisttexts.com
*.buddhisttexts.com
camdencreate.co
*.camdencreate.co
cancerouslungs.com
*.cancerouslungs.com
cancerpancreatic.com
*.cancerpancreatic.com
cchfvaccines.com
*.cchfvaccines.com
celebrityhaircolor.com
*.celebrityhaircolor.com
cepton.com
*.cepton.com
charmlinkbracelets.com
*.charmlinkbracelets.com
cheapharps.com
*.cheapharps.com
cheapleathergloves.com
*.cheapleathergloves.com
clickrx.com
*.clickrx.com
cok.in
*.cok.in
com-etcsde.vip
*.com-etcsde.vip
courierpriority.com
*.courierpriority.com
craftanix.nl
*.craftanix.nl
craftovio.nl
*.craftovio.nl
crafturio.nl
*.crafturio.nl
creek.in
*.creek.in
cryptomining.cc
*.cryptomining.cc
*.bqmn.desjardina.com
*.chat.desjardina.com
desjardina.com
*.desjardina.com
*.dgw.desjardina.com
*.efn5ss.desjardina.com
*.foy8xi0a.desjardina.com
*.g1jvdoud.desjardina.com
*.i0mwk.desjardina.com
*.mx7.desjardina.com
*.ns1.desjardina.com
*.ns2.desjardina.com
*.tjwhx.desjardina.com
*.x62o78a.desjardina.com
dkzot.work
*.dkzot.work
dp742quickquiz0206s.sbs
*.dp742quickquiz0206s.sbs
enterthegroup.com
*.enterthegroup.com
evcpp.my
*.evcpp.my
fjlrx.gdn
*.fjlrx.gdn
flashyidea.com
*.flashyidea.com
foodtruevision.food
*.foodtruevision.food
fruitprizes.com
*.fruitprizes.com
ft588994.xyz
*.ft588994.xyz
indiaeq.click
*.indiaeq.click
mdalockup.org
*.mdalockup.org
thunderquest964.info
*.thunderquest964.info
trikmtk.com
*.trikmtk.com
tsab.mobi
*.tsab.mobi
tsagk.loan
*.tsagk.loan
ttaznhj414.vip
*.ttaznhj414.vip
Other domains in certificate