SSL Certificate Analysis for intudo.com - Security Grade & TLS Configuration

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=vimm.bet

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

January 02, 2026

Valid Until

April 02, 2026 45 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

C3:2F:36:EF:0C:09:E8:C6:75:B7:05:7F:BB:90:A6:2F:66:9E:AB:83:6F:09:2A:93:71:72:B7:C9:96:EA:1E:BC

Alternative Names

73 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Excellent

max-age=31536000; includeSubDomains; preload

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Present

same-origin

Permissions-Policy

Present

accelerometer=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()

Recommendations

• Add Content-Security-Policy header to prevent XSS attacks

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

73 domains

intudo.com *.intudo.com *.my.intudo.com

Other domains in certificate

*.bbs.bordinesnursery.com bordinesnursery.com *.bordinesnursery.com *.pool.bordinesnursery.com *.users.bordinesnursery.com

chainex.live *.chainex.live *.walletex.chainex.live

coldfilms.com *.coldfilms.com *.hotels.coldfilms.com *.mailgw.coldfilms.com *.random.coldfilms.com *.static.coldfilms.com *.ww38.coldfilms.com

drakecomics.com *.drakecomics.com *.ww38.drakecomics.com

fiddle.au *.fiddle.au *.random.fiddle.au

*.2gqi9.gdsoq.com *.chinazcom.gdsoq.com *.f99.gdsoq.com *.fzqb.gdsoq.com gdsoq.com *.gdsoq.com *.m.gdsoq.com *.nanchong.gdsoq.com *.ww25.gdsoq.com *.www.gdsoq.com *.xp4.gdsoq.com

grips.com.au *.grips.com.au *.mx.grips.com.au

indoorcomposter.com.au *.indoorcomposter.com.au *.ww38.indoorcomposter.com.au

islandiamx.com *.islandiamx.com *.random.islandiamx.com

majohly-boutique.com *.majohly-boutique.com

*.m.pomoumtoo.com pomoumtoo.com *.pomoumtoo.com *.u.pomoumtoo.com *.z.pomoumtoo.com

spinees.online *.spinees.online

split.bio *.split.bio *.www.split.bio

suncitytanninghair.com *.suncitytanninghair.com

*.ns1.tenthire.com.au tenthire.com.au *.tenthire.com.au

*.100lovenotes.thebroadmoorblog.com *.prod.thebroadmoorblog.com thebroadmoorblog.com *.thebroadmoorblog.com

*.random.vimm.bet vimm.bet *.vimm.bet

*.hi.xhds.life *.tr.xhds.life xhds.life *.xhds.life *.zh.xhds.life