Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=gvr8m.xyz
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 04, 2026
Valid Until
May 05, 2026
80 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E9:00:6F:2D:BD:AC:B7:B4:B4:FC:8B:DE:94:A1:D2:FB:3D:27:B0:B8:FC:99:23:AC:51:0C:05:B9:35:76:8F:93
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
gamesmiths.com
*.gamesmiths.com
*.sitemap.gamesmiths.com
*.ww16.gamesmiths.com
*.ww25.gamesmiths.com
*.www.gamesmiths.com
alwanaltaif.com
*.alwanaltaif.com
*.random.alwanaltaif.com
badesc.online
*.badesc.online
*.deeepmail.badesc.online
bizimisimiz.com
*.bizimisimiz.com
*.comune.bizimisimiz.com
*.linux.bizimisimiz.com
*.mail.bizimisimiz.com
*.mx.bizimisimiz.com
*.webdisk.bizimisimiz.com
cardealers651300.icu
*.cardealers651300.icu
*.ww25.cardealers651300.icu
jfc.com.pl
*.jfc.com.pl
eventsstyle.com
*.eventsstyle.com
*.jira.eventsstyle.com
*.10729163.gvr8m.xyz
*.41128644.gvr8m.xyz
*.59961380.gvr8m.xyz
*.67043514.gvr8m.xyz
*.89403774.gvr8m.xyz
*.90195317.gvr8m.xyz
*.90408333.gvr8m.xyz
*.96691266.gvr8m.xyz
gvr8m.xyz
*.gvr8m.xyz
*.random.gvr8m.xyz
*.ww25.gvr8m.xyz
*.ww38.gvr8m.xyz
*.4.img.us
*.app.img.us
*.comune.img.us
*.https.img.us
img.us
*.img.us
*.mail.img.us
*.mobileapp.img.us
*.mx.img.us
*.mx10.img.us
*.outmail.img.us
*.po.img.us
*.ssl.img.us
*.test.img.us
*.v5.img.us
*.auditoria78.meinastrohoroskop.com
*.factura91.meinastrohoroskop.com
meinastrohoroskop.com
*.meinastrohoroskop.com
*.timbrado41.meinastrohoroskop.com
modal.solutions
*.modal.solutions
*.admin.okcupids.com
*.api.okcupids.com
*.dev.okcupids.com
okcupids.com
*.okcupids.com
*.staging.okcupids.com
*.ww3.okcupids.com
*.ww5.okcupids.com
*.ww6.okcupids.com
*.blog.resinger.com
*.cp.resinger.com
*.ftp.resinger.com
*.gis.resinger.com
*.hostmaster.resinger.com
resinger.com
*.resinger.com
*.ufa.resinger.com
*.users.resinger.com
*.videocdn.resinger.com
*.email.russobaskets.com
russobaskets.com
*.russobaskets.com
vjetar.store
*.vjetar.store
*.b081284c-565b-4dec-a6eb-1320f5594440.wowmodels.bz
*.random.wowmodels.bz
wowmodels.bz
*.wowmodels.bz
Other domains in certificate