Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=bmdgbq.blog
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 27, 2026
Valid Until
August 25, 2026
66 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D0:9E:C4:42:C9:E9:FC:F3:91:D1:DA:15:53:92:B4:63:3A:64:8E:D5:24:DC:B4:16:DE:EA:71:84:4F:AF:C8:5A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
mtny.lol
*.mtny.lol
bmdgbq.blog
*.bmdgbq.blog
brightwaveboost.com
*.brightwaveboost.com
careerenvision.xyz
*.careerenvision.xyz
casinoandbettingsites.top
*.casinoandbettingsites.top
casinogamestoplay.top
*.casinogamestoplay.top
coreintellectbe.com
*.coreintellectbe.com
dafuhao.shop
*.dafuhao.shop
dungcubepgiangtrinh.com
*.dungcubepgiangtrinh.com
eagleslandingofficepark.com
*.eagleslandingofficepark.com
iveres41.live
*.iveres41.live
khatrimaza.bond
*.khatrimaza.bond
kilat77tt.net
*.kilat77tt.net
letshare59.com
*.letshare59.com
localconnecthubcrew.com
*.localconnecthubcrew.com
lowellcarhart.net
*.lowellcarhart.net
mbahsemar.club
*.mbahsemar.club
medioambienterd.org
*.medioambienterd.org
mermaidsapphire.com
*.mermaidsapphire.com
mf-shop.com
*.mf-shop.com
mostreputableonlinecasino.top
*.mostreputableonlinecasino.top
powerchargerstore.com
*.powerchargerstore.com
preventivo-siti-web.com
*.preventivo-siti-web.com
qpbdw1040.com
*.qpbdw1040.com
rbmmicrophone.com
*.rbmmicrophone.com
reddemujeresporunmundomejor.org
*.reddemujeresporunmundomejor.org
rhodesconference.gr
*.rhodesconference.gr
rhoio.sbs
*.rhoio.sbs
risa.cc
*.risa.cc
sapaderecanyon.com
*.sapaderecanyon.com
sekabet.help
*.sekabet.help
shieldstone.solutions
*.shieldstone.solutions
snaprecruiter.com
*.snaprecruiter.com
spaceeconomy.online
*.spaceeconomy.online
spain-vacation-package-fr.sbs
*.spain-vacation-package-fr.sbs
sparkedmylife.com
*.sparkedmylife.com
specialdiyconcepts.live
*.specialdiyconcepts.live
specialistrecovery.org
*.specialistrecovery.org
spinsocial.world
*.spinsocial.world
tuwxy00.top
*.tuwxy00.top
ucylc.co
*.ucylc.co
winningcasinogames.top
*.winningcasinogames.top
wonderland.click
*.wonderland.click
workbybrightwave.com
*.workbybrightwave.com
xa51u.mom
*.xa51u.mom
Other domains in certificate