Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=b22667acae6d99e10adc5a3de56e2c6e.us
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 11, 2026
Valid Until
August 09, 2026
60 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
32:AC:02:DA:E9:26:BA:63:71:C6:03:BA:FF:95:69:9C:A2:B3:18:ED:6B:2E:CD:50:94:18:48:10:95:E5:BF:AA
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
digicards.co
*.digicards.co
74687.gdn
*.74687.gdn
activechain.co
*.activechain.co
agtip.cn
*.agtip.cn
aiambulatory.com
*.aiambulatory.com
b22667acae6d99e10adc5a3de56e2c6e.us
*.b22667acae6d99e10adc5a3de56e2c6e.us
bestvishes.com
*.bestvishes.com
breezysurfcompany.com
*.breezysurfcompany.com
budim.biz
*.budim.biz
chiappafirearmsusa.com
*.chiappafirearmsusa.com
chilla.cl
*.chilla.cl
criticize.in
*.criticize.in
crustsandtrusts.com
*.crustsandtrusts.com
dirvensmart.com
*.dirvensmart.com
duniagames.co
*.duniagames.co
*.ijgekqtc.duniagames.co
*.oahmjgxw.duniagames.co
etowahcountyhomes.com
*.etowahcountyhomes.com
expandedge.co
*.expandedge.co
fortdbchain.online
*.fortdbchain.online
*.sitemaps.fortdbchain.online
*.app.funr.org
funr.org
*.funr.org
*.www.funr.org
gain.club
*.gain.club
geticonicadvertising.co
*.geticonicadvertising.co
ggx12.icu
*.ggx12.icu
*.api.girlscantrade.digital
*.dev.girlscantrade.digital
girlscantrade.digital
*.girlscantrade.digital
*.staging.girlscantrade.digital
*.uat.girlscantrade.digital
*.webmail.girlscantrade.digital
*.zktxf1yvffi.girlscantrade.digital
growthscalestrategynetwork.co
*.growthscalestrategynetwork.co
imeds.co
*.imeds.co
naa.lol
*.naa.lol
online-courses-mw-5936.sbs
*.online-courses-mw-5936.sbs
online-dating-3q8v4v9u4r2.sbs
*.online-dating-3q8v4v9u4r2.sbs
onlinebooks.co
*.onlinebooks.co
pylcxx.cn
*.pylcxx.cn
replyq.co
*.replyq.co
shelve.me
*.shelve.me
*.kjztitzb.shopms.cn
*.oofxudgypjfcpxdrqdecve.shopms.cn
shopms.cn
*.shopms.cn
signed.lol
*.signed.lol
skauk.com
*.skauk.com
win-track.info
*.win-track.info
wizrq.qpon
*.wizrq.qpon
wolker.live
*.wolker.live
Other domains in certificate