DNS Gurus
Cached · just now
79/100 SECURITY SCORE

Certificate Information

Subject
CN=zappfy.io
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 31, 2026
Valid Until
May 01, 2026 80 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
03:F6:96:AA:8D:11:0D:E7:94:BB:15:43:95:1F:BC:83:B9:C9:DD:2B:55:B5:21:3B:09:2D:B8:81:C0:A7:53:F7
Alternative Names
89 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains
laureation.com *.laureation.com

Other domains in certificate

invisibledentalaligners041927.icu *.invisibledentalaligners041927.icu
invisibledentalaligners248830.icu *.invisibledentalaligners248830.icu
invisibledentalaligners534490.icu *.invisibledentalaligners534490.icu
irainvestment925728.icu *.irainvestment925728.icu
jaccc.com *.jaccc.com
japerry.com *.japerry.com
jeanhoffman.org *.jeanhoffman.org
jepe86.cyou *.jepe86.cyou
jnasx.gdn *.jnasx.gdn
kercash.com *.kercash.com
llavesconchip.com *.llavesconchip.com
loterias.biz *.loterias.biz
mbadegreeprograms.org *.mbadegreeprograms.org
meiweilife.com *.meiweilife.com
mffej1072.com *.mffej1072.com
misstakesfilmclub.com *.misstakesfilmclub.com
mizunophilippines.store *.mizunophilippines.store
multisigx.com *.multisigx.com
mytowerssavings.com *.mytowerssavings.com
nawaem.shop *.nawaem.shop
teachone.com *.teachone.com
thenixinjectorapk.builders *.thenixinjectorapk.builders
thepeninsulas.com *.thepeninsulas.com
theydidicantoo.world *.theydidicantoo.world
titioshodi.com *.titioshodi.com
tnawvh.vip *.tnawvh.vip
transferfactormiami.com *.transferfactormiami.com
translations-concordia.com *.translations-concordia.com
truoctran.online *.truoctran.online
tulipvision.com *.tulipvision.com
uketa.vip *.uketa.vip
uppdatering246.com *.uppdatering246.com
usate.com *.usate.com
versatelecom.com *.versatelecom.com
vikvo.com *.vikvo.com
*.home.winefoodies.com winefoodies.com *.winefoodies.com
wolfbrands.com *.wolfbrands.com
wrinkletreatment224157.icu *.wrinkletreatment224157.icu
wvxk6dscc5bax.com *.wvxk6dscc5bax.com
xc1gnz.buzz *.xc1gnz.buzz
xn--fkqv74n.com *.xn--fkqv74n.com
yzshuobang.com *.yzshuobang.com
zappfy.io *.zappfy.io