Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=grimpendium.net
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 11, 2026
Valid Until
May 12, 2026
89 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
AD:16:53:A7:15:17:C7:4E:A4:E5:D2:DF:DD:16:1E:B0:DC:DF:B1:86:53:76:87:58:6C:8E:6C:08:F4:44:11:1E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
ecosources.com
*.ecosources.com
*.mail.ecosources.com
*.sitemaps.ecosources.com
*.webmail.ecosources.com
*.0928e494-f45f-45fa-b404-8beb82c88c95.envirosafe.net
*.14b7a551-0a12-465a-81d4-7eaed55a3fcc.envirosafe.net
*.admin.envirosafe.net
*.api.envirosafe.net
*.assets.envirosafe.net
*.bkrkdnueelremoteaccess.envirosafe.net
*.client.envirosafe.net
*.cmvranueelremoteaccess.envirosafe.net
*.connectvpn.envirosafe.net
*.dev.envirosafe.net
envirosafe.net
*.envirosafe.net
*.lezblremote.envirosafe.net
*.m.envirosafe.net
*.mail.envirosafe.net
*.office.envirosafe.net
*.portal.envirosafe.net
*.rdp.envirosafe.net
*.rds1.envirosafe.net
*.rdweb.envirosafe.net
*.remote.envirosafe.net
*.remoteaccess.envirosafe.net
*.ssl.envirosafe.net
*.sslvpn.envirosafe.net
*.staging.envirosafe.net
*.test.envirosafe.net
*.ts.envirosafe.net
*.vpn1.envirosafe.net
*.vpn2.envirosafe.net
*.web.envirosafe.net
*.webconnect.envirosafe.net
*.webmail.envirosafe.net
*.wildcard.envirosafe.net
*.www.envirosafe.net
*.anyconnect.fidelia73c.de
*.client.fidelia73c.de
*.clientesvpn.fidelia73c.de
*.connect.fidelia73c.de
fidelia73c.de
*.fidelia73c.de
*.gateway.fidelia73c.de
*.mobile.fidelia73c.de
*.office.fidelia73c.de
*.secure.fidelia73c.de
*.sitemap.fidelia73c.de
*.sitemaps.fidelia73c.de
*.sslvpn.fidelia73c.de
*.studentsvpn.fidelia73c.de
*.vpn1.fidelia73c.de
*.vpn2.fidelia73c.de
*.vpnssl.fidelia73c.de
*.web.fidelia73c.de
*.webconnect.fidelia73c.de
*.webvpn.fidelia73c.de
*.administrator.golden-dates.store
*.ahmed-khairy.golden-dates.store
*.ai.golden-dates.store
*.autoconfig.golden-dates.store
*.bot.golden-dates.store
*.demo.golden-dates.store
*.ggg.golden-dates.store
golden-dates.store
*.golden-dates.store
*.prod.golden-dates.store
*.profile.golden-dates.store
*.sandbox.golden-dates.store
*.staging.golden-dates.store
*.test.golden-dates.store
*.visualizations.golden-dates.store
*.cloudflare-resolve-to.grimpendium.net
*.cpanel.grimpendium.net
grimpendium.net
*.grimpendium.net
*.hostmaster.grimpendium.net
*.m.grimpendium.net
*.phpmyadmin.grimpendium.net
*.ww12.grimpendium.net
*.www.grimpendium.net
means.au
*.means.au
*.random.means.au
*.bototp.yeabsirak.com
*.callcenter.yeabsirak.com
yeabsirak.com
*.yeabsirak.com
Other domains in certificate