DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=cricn.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 05, 2026
Valid Until
May 06, 2026 83 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
2C:3B:B4:1C:A7:6B:45:F4:BC:D5:C6:C7:14:D2:44:9B:C0:5D:42:20:C1:53:61:63:CD:77:49:D1:C0:DE:59:58
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
4tees.com *.4tees.com *.sitemap.4tees.com

Other domains in certificate

*.ajax.bryantcollege.com *.akali.bryantcollege.com *.api1.bryantcollege.com *.app.bryantcollege.com *.arabic.bryantcollege.com *.archer.bryantcollege.com *.asterix.bryantcollege.com bryantcollege.com *.bryantcollege.com *.by.bryantcollege.com *.ca.bryantcollege.com *.cd.bryantcollege.com *.client.bryantcollege.com *.custom.bryantcollege.com *.dedicated.bryantcollege.com *.delta.bryantcollege.com *.emv1.bryantcollege.com *.freebsd.bryantcollege.com *.gcc.bryantcollege.com *.ged.bryantcollege.com *.img.bryantcollege.com *.kraken.bryantcollege.com *.m.bryantcollege.com *.mail13.bryantcollege.com *.members.bryantcollege.com *.mrtg2.bryantcollege.com *.museum.bryantcollege.com *.mushroom.bryantcollege.com *.net.bryantcollege.com *.old2.bryantcollege.com *.oxford.bryantcollege.com *.pages.bryantcollege.com *.paynow.bryantcollege.com *.pi.bryantcollege.com *.president.bryantcollege.com *.support.bryantcollege.com *.test10.bryantcollege.com *.tor.bryantcollege.com *.vod.bryantcollege.com *.ww5.bryantcollege.com *.yandex.bryantcollege.com
cricn.com *.cricn.com *.cursos.cricn.com *.gwlxaapp.cricn.com *.iacddstg.cricn.com
katco.net *.katco.net *.m.katco.net
*.app.lenca.com lenca.com *.lenca.com *.ww11.lenca.com
*.access.rheana.com *.anyconnect.rheana.com *.autoconfig.rheana.com *.ciscovpn.rheana.com *.gp.rheana.com *.relay.rheana.com rheana.com *.rheana.com *.webmail.rheana.com
*.app.synth3tic.com synth3tic.com *.synth3tic.com
*.app.tokenclick.xyz *.dns.tokenclick.xyz *.kwid9.tokenclick.xyz tokenclick.xyz *.tokenclick.xyz *.tuafuaxheaques8.tokenclick.xyz
*.0ve.umw.net *.1a.umw.net *.app.umw.net *.autodiscover.umw.net *.mail.umw.net *.pukmehostmaster.umw.net *.sslvpn.umw.net umw.net *.umw.net *.ww16.umw.net
*.app.vaginalweights.com *.assets.vaginalweights.com *.demo.vaginalweights.com vaginalweights.com *.vaginalweights.com *.ww16.vaginalweights.com