DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=careeradvancementmap.live
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 09, 2026
Valid Until
May 10, 2026 89 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
26:F1:C4:00:DA:8F:D0:E7:33:7A:01:63:6C:6C:71:16:35:62:01:99:BF:62:44:A6:91:0B:92:45:D4:A8:A5:C7
Alternative Names
89 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains
acidpoint.com *.acidpoint.com *.admin.acidpoint.com *.api.acidpoint.com *.beta.acidpoint.com *.dev.acidpoint.com *.mail.acidpoint.com *.new.acidpoint.com *.old.acidpoint.com *.sitemaps.acidpoint.com *.test.acidpoint.com *.ww17.acidpoint.com

Other domains in certificate

*.admin.careeradvancementmap.live careeradvancementmap.live *.careeradvancementmap.live
*.ad.galoteryrewards.com *.adblock.galoteryrewards.com *.adguard.galoteryrewards.com *.adguard1.galoteryrewards.com *.admin.galoteryrewards.com *.agh.galoteryrewards.com *.api.galoteryrewards.com *.app.galoteryrewards.com *.dns.galoteryrewards.com *.dns1.galoteryrewards.com *.doh1.galoteryrewards.com galoteryrewards.com *.galoteryrewards.com *.intranet.galoteryrewards.com *.ns.galoteryrewards.com *.portal.galoteryrewards.com *.resolver.galoteryrewards.com *.resolver1.galoteryrewards.com *.shop.galoteryrewards.com *.store.galoteryrewards.com
*.api.goldenprimers.biz goldenprimers.biz *.goldenprimers.biz *.looker.goldenprimers.biz *.www.goldenprimers.biz
*.cpanel.irsforeclosure.com *.cpcalendars.irsforeclosure.com irsforeclosure.com *.irsforeclosure.com
*.access.karacam.com *.admin.karacam.com *.api.karacam.com *.app.karacam.com *.assets.karacam.com *.b4b.karacam.com *.backup.karacam.com *.demo.karacam.com karacam.com *.karacam.com *.m.karacam.com *.mail.karacam.com *.rds.karacam.com *.rds1.karacam.com *.sitemaps.karacam.com *.staging.karacam.com *.test.karacam.com *.uat.karacam.com *.wildcard.karacam.com
*.dev.narrativeagent.com narrativeagent.com *.narrativeagent.com *.sharepoint.narrativeagent.com
*.devel.noins.net *.game.noins.net noins.net *.noins.net
*.dev.speed.training *.get.speed.training *.m.speed.training speed.training *.speed.training
*.autoconfig.trendingfashionss.com *.cpanel.trendingfashionss.com trendingfashionss.com *.trendingfashionss.com
*.img67.vetmobl.com *.liofxatendimento.vetmobl.com *.m.vetmobl.com *.share.vetmobl.com vetmobl.com *.vetmobl.com *.wap.vetmobl.com *.webdisk.vetmobl.com *.www.vetmobl.com