Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=gradpla.net
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 16, 2026
Valid Until
April 16, 2026
53 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
87:88:AF:0C:93:A3:F3:34:16:0D:93:97:CA:22:49:2E:DD:69:1A:20:88:A1:28:FB:84:A6:8A:5F:5D:E9:B5:15
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
teacher.email
*.teacher.email
*.availability.teacher.email
*.course.teacher.email
*.errors.teacher.email
*.lesson.teacher.email
*.params.teacher.email
*.registration.teacher.email
*.schools.teacher.email
*.session.teacher.email
*.train.teacher.email
*.vo.teacher.email
adelaidemotorshow.com.au
*.adelaidemotorshow.com.au
*.wildcard.adelaidemotorshow.com.au
*.ww16.adelaidemotorshow.com.au
*.ww25.adelaidemotorshow.com.au
aetnaseniorsproduct.com
*.aetnaseniorsproduct.com
*.argo.aetnaseniorsproduct.com
d88b.bet
*.d88b.bet
*.random.d88b.bet
*.www.d88b.bet
flashcomponents.net
*.flashcomponents.net
*.sso.flashcomponents.net
gradpla.net
*.gradpla.net
*.aes.hcpss.com
*.dres.hcpss.com
hcpss.com
*.hcpss.com
*.inst.hcpss.com
*.lrhs.hcpss.com
*.maximus.hcpss.com
*.mpia.hcpss.com
*.random.hcpss.com
mercedes-benzvans.com.au
*.mercedes-benzvans.com.au
*.www.mercedes-benzvans.com.au
*.cpanel.newmovies.io
*.dc-0c47a446ffb0.newmovies.io
*.hostmaster.newmovies.io
*.mail.newmovies.io
newmovies.io
*.newmovies.io
*.webdisk.newmovies.io
*.webmail.newmovies.io
*.ww25.newmovies.io
*.ww3.newmovies.io
*.www.newmovies.io
projectkind123.org
*.projectkind123.org
*.a.sfschoolalliance.org
*.blog.sfschoolalliance.org
*.external.sfschoolalliance.org
*.server.sfschoolalliance.org
sfschoolalliance.org
*.sfschoolalliance.org
*.sitemap.sfschoolalliance.org
*.ww25.sfschoolalliance.org
*.anjadentalclinic.signatur.studio
*.biz.signatur.studio
*.com.signatur.studio
*.drgowrimeena.signatur.studio
*.impexbay.signatur.studio
*.in.signatur.studio
*.kinesishealthcare.signatur.studio
*.me.signatur.studio
*.merch.signatur.studio
*.millennialtoys.signatur.studio
signatur.studio
*.signatur.studio
*.xyz.signatur.studio
*.311o.szs29a.xyz
*.7tx0.szs29a.xyz
*.9yc6.szs29a.xyz
*.opco.szs29a.xyz
*.qcs9.szs29a.xyz
*.s5jk.szs29a.xyz
szs29a.xyz
*.szs29a.xyz
*.wnj9.szs29a.xyz
talktoacrimelawyer115600.icu
*.talktoacrimelawyer115600.icu
weddingphotographypackages071222.icu
*.weddingphotographypackages071222.icu
weight-loss-medication145623.icu
*.weight-loss-medication145623.icu
Other domains in certificate