Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=aomag.gdn
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
March 30, 2026
Valid Until
June 28, 2026
31 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BA:64:5A:CB:B9:84:EF:64:16:2A:FA:B3:51:F2:7E:24:E8:91:C0:80:44:FF:59:8F:82:63:A4:41:9E:79:A3:F3
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
odigigroup.com
*.odigigroup.com
aomag.gdn
*.aomag.gdn
betdoer.com
*.betdoer.com
bjzpb.care
*.bjzpb.care
bu88.cam
*.bu88.cam
busymama.tech
*.busymama.tech
*.skyppmail.busymama.tech
buyhouse2024.cc
*.buyhouse2024.cc
c576f8cf74d532ca.com
*.c576f8cf74d532ca.com
c61a3e28c6650c72.com
*.c61a3e28c6650c72.com
intsiginfo.it.com
*.intsiginfo.it.com
mtrzc.town
*.mtrzc.town
musclewalkmda.org
*.musclewalkmda.org
nano-led.com
*.nano-led.com
nanoatac.com
*.nanoatac.com
njjac.wtf
*.njjac.wtf
ntfnnab1440.vip
*.ntfnnab1440.vip
o8o.io
*.o8o.io
oyzap.town
*.oyzap.town
pargoy88q.com
*.pargoy88q.com
paytxqol.vip
*.paytxqol.vip
petiterousse.com
*.petiterousse.com
pol88pol.xyz
*.pol88pol.xyz
positivedaysway.xyz
*.positivedaysway.xyz
prowarehousearabic-nab.sbs
*.prowarehousearabic-nab.sbs
redsend.org
*.redsend.org
regelux.com
*.regelux.com
tranquilnatureretreat.com
*.tranquilnatureretreat.com
uletayu.com
*.uletayu.com
vxtyy.care
*.vxtyy.care
webdesignfortradies.com.au
*.webdesignfortradies.com.au
whyhellothere.org
*.whyhellothere.org
withbakar69.xyz
*.withbakar69.xyz
xbwsq.my
*.xbwsq.my
xcok4s.xyz
*.xcok4s.xyz
xdkhz.app
*.xdkhz.app
xktog.wtf
*.xktog.wtf
xtuil.sx
*.xtuil.sx
xxx-movies.pro
*.xxx-movies.pro
yafzv.icu
*.yafzv.icu
yogurt.net
*.yogurt.net
zcgmv.wtf
*.zcgmv.wtf
zgive.wtf
*.zgive.wtf
zs1186.com
*.zs1186.com
zs3326.com
*.zs3326.com
Other domains in certificate