Open
Cached
·
just now
80/100
SECURITY SCORE
Certificate Information
Subject
CN=my.notebird.app
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
January 24, 2026
Valid Until
April 24, 2026
86 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
58:24:34:AD:AE:19:66:E9:94:7A:7D:02:51:14:11:CF:0E:96:E4:B3:C4:1E:69:33:12:B5:8F:A8:98:DB:E8:06
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Configured
(Restricts certificate issuance)
Current Issuer
Authorized
(Matches CAA policy)
Authorized CAs
Wildcard CAs
Recommendations
- • Consider using critical flag (flags=128) for stricter CAA enforcement
- • You have authorized 4 CAs - consider limiting to only the CAs you actively use
- • Consider adding 'iodef' records to receive notifications about unauthorized certificate issuance attempts
Subject Alternative Names
100 domains
evmtools.xyz
admin.360ty.world
admin-dev.adalong.com
app-dev.adalong.com
hp.agencyspotter.com
management.agencyspotter.com
staging-pm-d2.agencyspotter.com
promo.agtran.com
design.aidefinance.io
www.babalingo.com
auth.betix.gg
brafurries.com.br
garage.brianreber.com
charactercreator.chrisjohn.digital
cv.clemont.org
auth.co-bee.net
auth.isoma.co.id
extra.magnolia.co.il
santoshdeuja.com.np
www.caglarmersinli.com.tr
auth.concseoul.com
store.danielospid.com
danielvargas.dev
dotrun.xyz
firebase.dribl.com
drope.me
www.ehlands.com
easter-egg.fanstoken.io
terms-and-privacy.fanstoken.io
call.ferum.tech
meetmanage.ferum.tech
lp.finderup.com.br
www.freakyfastdeli.me
affiliate-download-cards-hindi.getmega.com
download-affiliate-app-cards.getmega.com
download-affiliate-cards.getmega.com
download-affiliate-carrom.getmega.com
download-app-cards.getmega.com
download-app-trivia.getmega.com
download-app1.getmega.com
download-app3.getmega.com
download-app8.getmega.com
ginseng.tech
www.gitlab.run
admin.hamradioprep.com
simulador.credito.ia.br
implayer.tv
app-test.instaviagem.com
conecta.instaviagem.com
saltlakecity.jurorsearch.com
survey-dev.jurorsearch.com
survey.jurorsearch.com
kennedyracecars.com
www.lindeerp.com
linuxize.com
fisher.metaoriginal.com
admin.milcontratos.com
gestor-preprod.milcontratos.com
awesomeisjayell.newm.io
oddshapeshadow.newm.io
prime-embed.nir.by
my.notebird.app
www.olivershi.net
devui.opensprinkler.com
orisynch.com
app.platos.in
gravity-staging.playpilot.com
posimarket.posinetwork.xyz
shelter.projectgiven.org
app.querofinanciar.com
dashboard-staging.querofinanciar.com
sites.repu.me
workspace.repu.me
spseeds.sakimyto.com
app.scalesbot.com
accounts.sgtbots.com
skyblockcalendar.com
api.songxy.com
text.sreecharan.in
dawn.steaker.com
alpha-battle.sushibyte.io
apps.thangved.com
tools.thangved.com
thebathroomgame.com
thectoarchitect.com
app.thesafesteps.com
thiago.page
www.thisisbullsheep.com
www.tidybot.io
www.tkdkid1000.net
appli.tosho.fr
ar.trellidor.co.za
lalista.uqido.com
colormatch.variableinc.com
link.viveohealth.com
www.watchcomputersplay.com
concepts.wearecoast.com.au
dashboard.wearecoast.com.au
unavailable.webspellchecker.com
djimapper.yarosfpv.com
Other domains in certificate