Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=jurisdictions.dev
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
June 20, 2026
Valid Until
September 18, 2026
88 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
04:49:58:7E:EC:BA:60:ED:7B:F7:DD:F9:80:B4:6F:6B:8A:F0:65:16:EB:57:DB:90:13:3F:33:86:5A:89:87:3B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
jet-grouting.com
*.jet-grouting.com
*.wildcard.jet-grouting.com
app158452.tv
*.app158452.tv
*.www.app158452.tv
dragonairlines.com
*.dragonairlines.com
*.get.dragonairlines.com
*.l2tp-us.dragonairlines.com
*.social.dragonairlines.com
*.spock.dragonairlines.com
*.upload.dragonairlines.com
*.ww16.dragonairlines.com
*.ww17.dragonairlines.com
*.ww25.dragonairlines.com
*.ww3.dragonairlines.com
*.ww5.dragonairlines.com
*.ww6.dragonairlines.com
floozed.net
*.floozed.net
*.www.floozed.net
*.11.fredmeyerjewelry.com
*.download.fredmeyerjewelry.com
fredmeyerjewelry.com
*.fredmeyerjewelry.com
*.stores.fredmeyerjewelry.com
*.wildcard.fredmeyerjewelry.com
*.ww11.fredmeyerjewelry.com
*.ww38.fredmeyerjewelry.com
*.www.fredmeyerjewelry.com
*.api.gdfb.org
*.assets.gdfb.org
*.blog.gdfb.org
*.dev.gdfb.org
gdfb.org
*.gdfb.org
*.hostmaster.gdfb.org
*.m.gdfb.org
*.sitemap.gdfb.org
*.sitemaps.gdfb.org
*.admin.hydrogencleanpower.com
hydrogencleanpower.com
*.hydrogencleanpower.com
*.intranet.hydrogencleanpower.com
*.portal.hydrogencleanpower.com
*.store.hydrogencleanpower.com
*.tpmjfadmin.hydrogencleanpower.com
*.www.hydrogencleanpower.com
*.admin.jurisdictions.dev
*.api.jurisdictions.dev
*.app.jurisdictions.dev
*.apps.jurisdictions.dev
*.demo.jurisdictions.dev
*.dev.jurisdictions.dev
*.dy35sw.jurisdictions.dev
jurisdictions.dev
*.jurisdictions.dev
*.members.jurisdictions.dev
*.test.jurisdictions.dev
lucky1god.com
*.lucky1god.com
*.member.lucky1god.com
msmebengalinvest.in
*.msmebengalinvest.in
*.random.msmebengalinvest.in
*.ww16.msmebengalinvest.in
*.git.nokiatheone.com
*.iot.nokiatheone.com
nokiatheone.com
*.nokiatheone.com
*.openapi.nokiatheone.com
*.service.nokiatheone.com
*.webdisk.nokiatheone.com
*.admin.readingjob.info
*.api.readingjob.info
*.app.readingjob.info
*.backup.readingjob.info
*.com90e-bcae-4646c75a8601.readingjob.info
*.demo.readingjob.info
*.dev.readingjob.info
*.llnxjtest.readingjob.info
readingjob.info
*.readingjob.info
*.shop.readingjob.info
*.staging.readingjob.info
*.uat.readingjob.info
*.pay.worldaccesslogistics.com
worldaccesslogistics.com
*.worldaccesslogistics.com
Other domains in certificate