Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=thegivingforum.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 15, 2026
Valid Until
August 13, 2026
72 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
6E:A2:07:0D:DF:A1:9C:55:77:90:F0:69:6B:6A:12:C6:14:E7:C7:C9:27:E1:54:BC:B9:09:91:89:F3:F2:D7:4A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
88 domains
intigle.click
*.intigle.click
*.1004yak.intigle.click
*.btranking.intigle.click
*.comygy.intigle.click
*.movidown.intigle.click
55999.click
*.55999.click
atptjindustrial.click
*.atptjindustrial.click
awcgfun.cn
*.awcgfun.cn
buy-now-pay-later-smartphones-kiss-993.today
*.buy-now-pay-later-smartphones-kiss-993.today
buy-now-pay-later-smartphones.sbs
*.buy-now-pay-later-smartphones.sbs
bxusyf.cc
*.bxusyf.cc
cdmx-air-328086495.click
*.cdmx-air-328086495.click
contech-monterrey-667971461.click
*.contech-monterrey-667971461.click
cyber-security-degree-9cdpq.click
*.cyber-security-degree-9cdpq.click
cyber-security-degree-fz21d.click
*.cyber-security-degree-fz21d.click
futureleadersassembly.org
*.futureleadersassembly.org
*.node.futureleadersassembly.org
*.35vw68.kandyblueguest.info
*.aecbe0cf-903d-47b2-954b-7864d58ebf86.kandyblueguest.info
*.api.kandyblueguest.info
*.app.kandyblueguest.info
*.dev.kandyblueguest.info
kandyblueguest.info
*.kandyblueguest.info
*.www.kandyblueguest.info
*.7008105.loconsigo.biz
loconsigo.biz
*.loconsigo.biz
longislandintegrativemedicine.com
*.longislandintegrativemedicine.com
meetpluggtech.work
*.meetpluggtech.work
meetvoiceable.business
*.meetvoiceable.business
mfqxe.rip
*.mfqxe.rip
mi77slot.bond
*.mi77slot.bond
mkcnul.shop
*.mkcnul.shop
*.dwc.mustikaslot88.online
mustikaslot88.online
*.mustikaslot88.online
*.rec.mustikaslot88.online
*.wap.mustikaslot88.online
nova-orbitwave.xyz
*.nova-orbitwave.xyz
pixelarcade155.info
*.pixelarcade155.info
ratutogel138.xyz
*.ratutogel138.xyz
*.ww25.ratutogel138.xyz
*.32.schonheitsblute.com
schonheitsblute.com
*.schonheitsblute.com
thegivingforum.com
*.thegivingforum.com
*.ww25.thegivingforum.com
*.ww38.thegivingforum.com
thinkcorespheremetrics.business
*.thinkcorespheremetrics.business
usekarmakitchen.pro
*.usekarmakitchen.pro
*.pdemo.wcuu.cc
wcuu.cc
*.wcuu.cc
www213r.cc
*.www213r.cc
wwwaaza.cc
*.wwwaaza.cc
wwwhh601.cc
*.wwwhh601.cc
xhsbooks.cn
*.xhsbooks.cn
xx6772.cc
*.xx6772.cc
Other domains in certificate