Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=undurraga.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 07, 2026
Valid Until
May 08, 2026
70 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
65:2A:0C:F4:E1:F4:F0:17:60:BC:A4:21:86:6E:3F:47:DE:00:84:DF:32:17:5F:3E:11:B1:77:F2:E2:84:E7:7C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
salyzyn.com
*.salyzyn.com
*.01af8f92-a9a6-4a82-b8e1-aa0015edc8b2.salyzyn.com
*.assets.salyzyn.com
*.dev.salyzyn.com
*.hostmaster.salyzyn.com
*.m.salyzyn.com
*.remoteapp.salyzyn.com
*.test.salyzyn.com
*.vpn2.salyzyn.com
*.vpnssl.salyzyn.com
*.ww1.salyzyn.com
*.ww17.salyzyn.com
*.2dfd76d8-d62f-46d7-be0e-f7926425fd19.77g.bet
77g.bet
*.77g.bet
*.pipeline.77g.bet
*.sitemap.77g.bet
*.superset.77g.bet
*.www.77g.bet
chess-result.com
*.chess-result.com
chocoly.com
*.chocoly.com
cosmeticpascher.com
*.cosmeticpascher.com
examanage.online
*.examanage.online
*.ww25.examanage.online
*.25.forstrk.site
*.3.forstrk.site
*.38.forstrk.site
*.api.forstrk.site
*.dev.forstrk.site
forstrk.site
*.forstrk.site
*.mail.forstrk.site
*.random.forstrk.site
*.test.forstrk.site
*.ww.forstrk.site
*.ww25.forstrk.site
*.ww3.forstrk.site
*.cdn.hapermob.shop
hapermob.shop
*.hapermob.shop
keyregtrust.com
*.keyregtrust.com
nang.au
*.nang.au
*.facebook.nomedigas.com
*.jenkins.nomedigas.com
nomedigas.com
*.nomedigas.com
*.test.nomedigas.com
oceansidewaterdamagerestoration.com
*.oceansidewaterdamagerestoration.com
*.cicd.okestream2.xyz
okestream2.xyz
*.okestream2.xyz
*.onl.okestream2.xyz
*.sitemaps.okestream2.xyz
*.ww12.okestream2.xyz
*.ww25.okestream2.xyz
*.www12.okestream2.xyz
poolfencing102046.icu
*.poolfencing102046.icu
*.acc-dnt.screenshot.com
*.fullpage.screenshot.com
*.gartner.screenshot.com
*.happierit.screenshot.com
*.machineryhouse.screenshot.com
*.netcraft.screenshot.com
*.not.screenshot.com
screenshot.com
*.screenshot.com
*.seagullscientific.screenshot.com
*.wfscorp.screenshot.com
severemigrainetreatment628873.icu
*.severemigrainetreatment628873.icu
*.anyconnect.undurraga.com
*.connect.undurraga.com
*.rds.undurraga.com
*.remoto.undurraga.com
*.secure.undurraga.com
*.ssl.undurraga.com
undurraga.com
*.undurraga.com
*.vpn2.undurraga.com
webrestauratnstore.com
*.webrestauratnstore.com
Other domains in certificate