Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=galren.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 15, 2026
Valid Until
July 14, 2026
36 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A7:E0:67:A9:34:22:93:E8:A9:EC:91:01:0E:A0:65:40:9E:12:F5:7E:A0:DB:FD:5D:A5:4D:7C:4F:F3:8B:08:26
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
rushflooring.com
*.rushflooring.com
*.pro.rushflooring.com
*.qa.rushflooring.com
*.sandbox.rushflooring.com
*.staging.rushflooring.com
*.v3.rushflooring.com
*.ai.combitcoin.com
*.avgbltc0in.combitcoin.com
*.binance.combitcoin.com
*.bitcoin.combitcoin.com
*.bot.combitcoin.com
*.cointribune.combitcoin.com
combitcoin.com
*.combitcoin.com
*.comexodus.combitcoin.com
*.comluno.combitcoin.com
*.cp.combitcoin.com
*.gold.combitcoin.com
*.pearlvine.combitcoin.com
*.preview.combitcoin.com
*.production.combitcoin.com
*.qmadix.combitcoin.com
*.users.combitcoin.com
*.wellsfargo.combitcoin.com
*.wincorpsa.combitcoin.com
*.ww16.combitcoin.com
*.ww25.combitcoin.com
diaet-abnehmen.de
*.diaet-abnehmen.de
galren.com
*.galren.com
*.hostmaster.galren.com
mk-tv.com
*.mk-tv.com
monolocaliaffittasi.com
*.monolocaliaffittasi.com
nortoninloe.com
*.nortoninloe.com
*.ww38.nortoninloe.com
nortonloginaccount.com
*.nortonloginaccount.com
*.2c793f9e-5756-4b78-99d9-ed8e8ecefb06.thenetpage.com
*.37c825e1-e948-410c-a3ea-a73cb4b6f3fa.thenetpage.com
*.61d19e9f-b593-4b48-b42e-376df6ec6260.thenetpage.com
*.access.thenetpage.com
*.admin.thenetpage.com
*.anyconnect.thenetpage.com
*.api.thenetpage.com
*.app.thenetpage.com
*.apps.thenetpage.com
*.assets.thenetpage.com
*.blog.thenetpage.com
*.ceb94aa8-3114-4238-b599-3338ce74a96c.thenetpage.com
*.cf71f757-b6b9-45cf-be46-8e0a4aea458a.thenetpage.com
*.clientesvpn.thenetpage.com
*.demo.thenetpage.com
*.dev.thenetpage.com
*.dolibarr.thenetpage.com
*.gateway.thenetpage.com
*.m.thenetpage.com
*.oplpum.thenetpage.com
*.pay.thenetpage.com
*.rds.thenetpage.com
*.rdweb.thenetpage.com
*.ssl.thenetpage.com
*.test.thenetpage.com
*.testing.thenetpage.com
thenetpage.com
*.thenetpage.com
*.vpn.thenetpage.com
*.vpngate.thenetpage.com
*.www.thenetpage.com
*.xapp.thenetpage.com
*.hostmaster.ussama.com
*.ildcard.ussama.com
*.m.ussama.com
*.noor.ussama.com
ussama.com
*.ussama.com
*.vmail.ussama.com
*.vpn.ussama.com
*.wildcard.ussama.com
*.ww1.ussama.com
*.ww11.ussama.com
*.ww16.ussama.com
*.ww17.ussama.com
*.ww25.ussama.com
*.ww38.ussama.com
*.www.ussama.com
Other domains in certificate