Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=gfdf.org
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 12, 2026
Valid Until
August 10, 2026
59 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
58:D9:C5:5B:DA:1C:1C:94:D9:21:39:66:C2:8B:01:EC:08:27:4F:09:F6:02:EE:3E:FA:45:49:D9:6C:79:6F:1E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
pyd.my
*.pyd.my
*.client.pyd.my
*.09bc5c21-4f73-47c3-b8d2-b7653cf47562.creaditninja.com
creaditninja.com
*.creaditninja.com
*.dev.creaditninja.com
*.client.gfdf.org
*.connectvpn.gfdf.org
gfdf.org
*.gfdf.org
*.portal.gfdf.org
*.secureaccess.gfdf.org
*.ssl.gfdf.org
*.sslvpn.gfdf.org
*.vpn2.gfdf.org
*.web.gfdf.org
*.webconnect.gfdf.org
*.admin.guzelbilgi.info
*.agolishop.guzelbilgi.info
*.app.guzelbilgi.info
*.assets.guzelbilgi.info
*.bvzxeblog.guzelbilgi.info
*.demo.guzelbilgi.info
guzelbilgi.info
*.guzelbilgi.info
*.oouykapp.guzelbilgi.info
*.shop.guzelbilgi.info
*.sitemap.guzelbilgi.info
*.test.guzelbilgi.info
*.m.mediation.io
mediation.io
*.mediation.io
*.sitemap.mediation.io
*.abglm.mkp-law.com
*.acwhh.mkp-law.com
*.ahmyl.mkp-law.com
*.ai.mkp-law.com
*.ammmb.mkp-law.com
*.anrzj.mkp-law.com
*.api.mkp-law.com
*.asrfk.mkp-law.com
*.avquzipcm.mkp-law.com
*.bdhilmhrh.mkp-law.com
*.blnyp.mkp-law.com
*.bngtmosxw.mkp-law.com
*.brncv.mkp-law.com
*.catck.mkp-law.com
*.chyhu.mkp-law.com
*.comune.mkp-law.com
*.dcqmc.mkp-law.com
*.dns.mkp-law.com
*.egdfmoxls.mkp-law.com
*.elknl.mkp-law.com
*.esttaparm.mkp-law.com
*.gate.mkp-law.com
*.gehavrsvi.mkp-law.com
*.giedz.mkp-law.com
*.gofhnfkhx.mkp-law.com
*.gvekvamr.mkp-law.com
*.help.mkp-law.com
*.hthhnstxl.mkp-law.com
*.htmzk.mkp-law.com
*.inksurtho.mkp-law.com
*.jvikl.mkp-law.com
*.kuuwh.mkp-law.com
*.kwilebsmx.mkp-law.com
*.kwnbanrjp.mkp-law.com
*.lypws.mkp-law.com
*.mfiledrpq.mkp-law.com
mkp-law.com
*.mkp-law.com
*.nuzqd.mkp-law.com
*.opforumrevolfieru.mkp-law.com
*.otrsk.mkp-law.com
*.palovpn.mkp-law.com
*.pqnlozyaa.mkp-law.com
*.pzblt.mkp-law.com
*.qejdv.mkp-law.com
*.qttwzzry.mkp-law.com
*.ra.mkp-law.com
*.ravpn.mkp-law.com
*.rzaiv.mkp-law.com
*.smtp.mkp-law.com
*.tzshgfym.mkp-law.com
*.uqwiogten.mkp-law.com
*.vpn-eu.mkp-law.com
*.webdisk.mkp-law.com
*.wpdwpudm.mkp-law.com
*.zizfu.mkp-law.com
Other domains in certificate