Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=198195.gdn
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 02, 2026
Valid Until
July 31, 2026
78 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9D:0C:76:17:8C:F0:3D:3D:09:42:4D:AB:EC:78:F8:11:51:10:4F:E7:07:61:49:22:7B:5C:F1:25:64:9F:0C:68
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
itomic.ai
*.itomic.ai
198195.gdn
*.198195.gdn
607images22.com
*.607images22.com
639f39.cc
*.639f39.cc
758792.cc
*.758792.cc
85586.my
*.85586.my
aicodirector.com
*.aicodirector.com
atlantic-trading.com
*.atlantic-trading.com
b2bfunding.one
*.b2bfunding.one
beststorez.com
*.beststorez.com
cheapsportsgear.shop
*.cheapsportsgear.shop
connectwithlinkflow.com
*.connectwithlinkflow.com
eassycomgames.com
*.eassycomgames.com
ebxml.one
*.ebxml.one
elvarno.com
*.elvarno.com
fitnesswithjolie.com
*.fitnesswithjolie.com
frmeh0aizcsdib.cc
*.frmeh0aizcsdib.cc
gocapslock.one
*.gocapslock.one
growwithlinkflow.com
*.growwithlinkflow.com
hyqiwu.pro
*.hyqiwu.pro
influencerconversations.com
*.influencerconversations.com
laproclear.com
*.laproclear.com
legacywin257.shop
*.legacywin257.shop
lejupy.pro
*.lejupy.pro
makiso.pro
*.makiso.pro
ntflx-uae.com
*.ntflx-uae.com
overview-media.com
*.overview-media.com
pinupstyleacademy.com
*.pinupstyleacademy.com
professionalfitnesscraft.run
*.professionalfitnesscraft.run
slanvia.info
*.slanvia.info
spinari.it.com
*.spinari.it.com
swagfox.com
*.swagfox.com
thenexusamzservices.com
*.thenexusamzservices.com
thep33.xyz
*.thep33.xyz
therawinspiration.com
*.therawinspiration.com
timberperfumecollections.com
*.timberperfumecollections.com
tireprices.xyz
*.tireprices.xyz
tracknpay.com
*.tracknpay.com
tryb2bfundingapp.company
*.tryb2bfundingapp.company
trygowithechoonline.co
*.trygowithechoonline.co
xnkjm.gdn
*.xnkjm.gdn
yerniva.info
*.yerniva.info
yilvora.info
*.yilvora.info
zornvia.info
*.zornvia.info
zzz7787.cc
*.zzz7787.cc
Other domains in certificate