SSL Certificate Analysis for eu.gsd.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt Active incidents

Certificate Information

Subject

CN=tjnyurl.com

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

April 02, 2026

Valid Until

July 01, 2026 50 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

6F:31:76:37:EB:EE:FA:07:11:BC:F7:76:FA:19:02:2F:C5:92:53:29:65:59:F1:54:D7:12:C2:5B:95:D9:0E:E1

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

gsd.com *.gsd.com *.alexia.gsd.com *.bpo.gsd.com *.cumis-com.gsd.com *.dsfg.gsd.com *.eu.gsd.com *.ey.gsd.com *.gdl.gsd.com *.it.gsd.com *.k9.gsd.com *.netflix.gsd.com *.pinehill.gsd.com *.portal.gsd.com *.reg.gsd.com *.smith.gsd.com *.spe.gsd.com *.student.gsd.com *.usa-5.gsd.com *.viasat.gsd.com *.www.gsd.com

Other domains in certificate

100win77.com *.100win77.com *.api.100win77.com *.assets.100win77.com *.cloud.100win77.com *.hostmaster.100win77.com *.intranet.100win77.com *.portal.100win77.com *.rustore.100win77.com *.sharepoint.100win77.com

1wqqws.top *.1wqqws.top

agechathumain.com *.agechathumain.com *.cpanel.agechathumain.com

braiin.io *.braiin.io

by1337-plugins.space *.by1337-plugins.space

bysolar.store *.bysolar.store

cfsp9.motorcycles *.cfsp9.motorcycles *.heirol.cfsp9.motorcycles *.ww38.cfsp9.motorcycles

*.authsmtp.encontreglossexpress.com encontreglossexpress.com *.encontreglossexpress.com *.ww25.encontreglossexpress.com

harddrive.com.au *.harddrive.com.au *.www.harddrive.com.au

hyips.org *.hyips.org *.www.hyips.org

lustfulillumination.com *.lustfulillumination.com *.sitemap.lustfulillumination.com

*.com.mymountliberty.com mymountliberty.com *.mymountliberty.com

sparespace.au *.sparespace.au

tjnyurl.com *.tjnyurl.com *.ww25.tjnyurl.com

*.account.urlsing.com urlsing.com *.urlsing.com *.www.urlsing.com

*.70ca8a9b-e839-4d21-abad-45c6843ee89d.vip789beta.link *.9ab29b90-0101-4dc5-9b98-7f60195eaf92.vip789beta.link *.admin.vip789beta.link *.api.vip789beta.link *.app.vip789beta.link *.backup.vip789beta.link *.dashboard.vip789beta.link *.dev.vip789beta.link *.dvuhliam.vip789beta.link *.hostmaster.vip789beta.link *.marketing.vip789beta.link *.qa.vip789beta.link *.staging.vip789beta.link *.stg.vip789beta.link *.v1.vip789beta.link vip789beta.link *.vip789beta.link *.web.vip789beta.link