Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=cgdau.plus
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 16, 2026
Valid Until
July 15, 2026
71 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
EF:FB:A4:B7:F9:CD:B4:F2:88:A3:24:5F:39:96:96:69:ED:D9:0F:FD:3B:EF:32:1E:50:C7:81:54:58:5C:8E:E1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
selffundingassociation.com
*.selffundingassociation.com
*.members.selffundingassociation.com
*.newdev.selffundingassociation.com
*.oldsite.selffundingassociation.com
918ne.com
*.918ne.com
98678.bet
*.98678.bet
cgdau.plus
*.cgdau.plus
gmfti.town
*.gmfti.town
gougcmarketing.com
*.gougcmarketing.com
gtp.fyi
*.gtp.fyi
gua25.lol
*.gua25.lol
gyzdk.loans
*.gyzdk.loans
hbxjs.nexus
*.hbxjs.nexus
insomniaopposite.com
*.insomniaopposite.com
lizgreatnessoftskillscoach.com
*.lizgreatnessoftskillscoach.com
mmf4jx1z.top
*.mmf4jx1z.top
mnflt.plus
*.mnflt.plus
mobileserve-mania.com
*.mobileserve-mania.com
mobileserveuniverse.com
*.mobileserveuniverse.com
mobileserveworld.com
*.mobileserveworld.com
onaef.nexus
*.onaef.nexus
onia.my
*.onia.my
p38njua.top
*.p38njua.top
pin-up-casino-seo5.casino
*.pin-up-casino-seo5.casino
pin-up-casino-sjj8.casino
*.pin-up-casino-sjj8.casino
rdh-vdha.org
*.rdh-vdha.org
robojoinproject.com
*.robojoinproject.com
schoolsponsoringregionkf.com
*.schoolsponsoringregionkf.com
seawaylogistics.org
*.seawaylogistics.org
sigmabrokerage.com
*.sigmabrokerage.com
topqlfact.live
*.topqlfact.live
truck-drivers-jobs-100013.sbs
*.truck-drivers-jobs-100013.sbs
tryfloretteam.com
*.tryfloretteam.com
ugcsoftwareconnection.com
*.ugcsoftwareconnection.com
user21-stripe.com
*.user21-stripe.com
vipvf.vin
*.vipvf.vin
vortecsa.com
*.vortecsa.com
vulkanigryavtomaty-c2h4.casino
*.vulkanigryavtomaty-c2h4.casino
vulkanigryigrat-nacl.casino
*.vulkanigryigrat-nacl.casino
vulkanigryigrovye-na3po4.casino
*.vulkanigryigrovye-na3po4.casino
warehouse-jobs-2f7k9o0d8u1.sbs
*.warehouse-jobs-2f7k9o0d8u1.sbs
www222025.com
*.www222025.com
www498566.com
*.www498566.com
www777342.com
*.www777342.com
ybi5986.cc
*.ybi5986.cc
yhmia.plus
*.yhmia.plus
Other domains in certificate