Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=dynamicsinmind.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 19, 2026
Valid Until
August 17, 2026
84 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
2D:F1:6D:F7:08:87:C3:6B:2A:7E:A9:72:14:A9:99:6F:CE:D9:7E:1F:BF:D9:61:24:6B:69:9B:35:1E:54:AE:00
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
epcot.digital
*.epcot.digital
*.admin.epcot.digital
*.alfabank.epcot.digital
*.animals-travel.epcot.digital
*.api.epcot.digital
*.apps.epcot.digital
*.assets.epcot.digital
*.bamboo.epcot.digital
*.blog.epcot.digital
*.development.epcot.digital
*.fbyroproxy.epcot.digital
*.groups.epcot.digital
*.iwbo67.epcot.digital
*.jet.epcot.digital
*.kaspi.epcot.digital
*.login.epcot.digital
*.postexpress.epcot.digital
*.postmaster.epcot.digital
*.proxy.epcot.digital
*.public.epcot.digital
*.webmaster.epcot.digital
*.ww02.epcot.digital
*.ww1.epcot.digital
*.www0.epcot.digital
*.3g.dynamicsinmind.com
*.api.dynamicsinmind.com
*.app.dynamicsinmind.com
*.comune.dynamicsinmind.com
dynamicsinmind.com
*.dynamicsinmind.com
*.mailserver.dynamicsinmind.com
*.mx10.dynamicsinmind.com
*.nqwdzoih.dynamicsinmind.com
*.sandbox.dynamicsinmind.com
*.test.dynamicsinmind.com
filecript.co
*.filecript.co
fille.co
*.fille.co
findanotary.co
*.findanotary.co
fitnessetiquette.run
*.fitnessetiquette.run
*.60ca97.lytrex.com
*.access.lytrex.com
*.api.lytrex.com
*.app.lytrex.com
*.apps.lytrex.com
*.backup.lytrex.com
*.connect.lytrex.com
*.dashboard.lytrex.com
*.demo.lytrex.com
*.desktop.lytrex.com
*.dev.lytrex.com
*.f.lytrex.com
*.f451558a-805b-496b-85a1-eea55c41fd39.lytrex.com
*.fxuhygateway.lytrex.com
*.gateway.lytrex.com
*.gp.lytrex.com
*.landing.lytrex.com
lytrex.com
*.lytrex.com
*.m.lytrex.com
*.mailer.lytrex.com
*.marketing.lytrex.com
*.portal.lytrex.com
*.qa.lytrex.com
*.ra.lytrex.com
*.rdp.lytrex.com
*.rds.lytrex.com
*.rdweb.lytrex.com
*.remote.lytrex.com
*.remoteapp.lytrex.com
*.remoto.lytrex.com
*.secure.lytrex.com
*.ssl.lytrex.com
*.sslvpn.lytrex.com
*.staging.lytrex.com
*.stg.lytrex.com
*.test.lytrex.com
*.thnvdymw.lytrex.com
*.uat.lytrex.com
*.v2.lytrex.com
*.vdi.lytrex.com
*.vnglmassets.lytrex.com
*.vpn.lytrex.com
*.vpn2.lytrex.com
*.vpnssl.lytrex.com
*.webvpn.lytrex.com
Other domains in certificate