Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=newdemocrats.net
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 24, 2026
Valid Until
May 25, 2026
89 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C1:85:6E:E8:52:F2:84:6B:8C:F0:7F:20:45:46:8E:3C:0F:E0:B6:F7:1B:FF:F8:BD:65:B6:5E:9E:D7:21:76:E7
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
sungwon.com
*.sungwon.com
*.access.sungwon.com
*.anyconnect.sungwon.com
*.api.sungwon.com
*.as9912.sungwon.com
*.autodiscover.sungwon.com
*.cisco.sungwon.com
*.ciscovpn.sungwon.com
*.connect.sungwon.com
*.demo.sungwon.com
*.dev.sungwon.com
*.firewall.sungwon.com
*.ftp.sungwon.com
*.gateway.sungwon.com
*.gp.sungwon.com
*.m.sungwon.com
*.mail.sungwon.com
*.mbx01.sungwon.com
*.old.sungwon.com
*.owa.sungwon.com
*.portal.sungwon.com
*.postmaster.sungwon.com
*.ra.sungwon.com
*.ravpn.sungwon.com
*.relay.sungwon.com
*.remote.sungwon.com
*.secure.sungwon.com
*.sitemap.sungwon.com
*.smtp.sungwon.com
*.ssl.sungwon.com
*.sslvpn.sungwon.com
*.staging.sungwon.com
*.store.sungwon.com
*.vpn.sungwon.com
*.vpnssl.sungwon.com
*.webmail.sungwon.com
*.webvpn.sungwon.com
9g5oijerdy4erjddoigr.xyz
*.9g5oijerdy4erjddoigr.xyz
*.gjdvb.9g5oijerdy4erjddoigr.xyz
*.he00g.9g5oijerdy4erjddoigr.xyz
*.igqlc.9g5oijerdy4erjddoigr.xyz
*.kwid9.9g5oijerdy4erjddoigr.xyz
*.v6j6e.9g5oijerdy4erjddoigr.xyz
*.api.empowermentretirment.com
empowermentretirment.com
*.empowermentretirment.com
*.api.marinadelreymusic.com
marinadelreymusic.com
*.marinadelreymusic.com
neuralboostsync.pro
*.neuralboostsync.pro
*.wildcardsubdomaintoprocess.neuralboostsync.pro
*.mail.newdemocrats.net
newdemocrats.net
*.newdemocrats.net
*.hostmaster.plumbingservice.co
plumbingservice.co
*.plumbingservice.co
*.app.rwfm.org
*.ftp.rwfm.org
*.mail.rwfm.org
*.ns2.rwfm.org
*.pay.rwfm.org
rwfm.org
*.rwfm.org
*.sitemap.rwfm.org
*.www.rwfm.org
*.47d85ab7-568d-417f-a5c6-803fa3b506d6.sadivu.exchange
*.admin.sadivu.exchange
*.api.sadivu.exchange
*.app.sadivu.exchange
*.auth.sadivu.exchange
*.blog.sadivu.exchange
*.cabinet.sadivu.exchange
*.cyxzdstaging.sadivu.exchange
*.demo.sadivu.exchange
*.hostmaster.sadivu.exchange
*.link.sadivu.exchange
*.lryxcapi.sadivu.exchange
sadivu.exchange
*.sadivu.exchange
*.sso.sadivu.exchange
*.staging.sadivu.exchange
*.ww1.sadivu.exchange
*.intranet.wbo.biz
wbo.biz
*.wbo.biz
Other domains in certificate