Open
Cached
·
3h ago
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=snapcchat.com
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
May 30, 2026
Valid Until
August 28, 2026
64 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D2:92:81:EC:03:17:B8:1A:D5:A5:E5:05:D2:0B:44:F7:DD:D5:54:9E:80:AD:3B:85:AF:79:59:2F:99:42:6B:8A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
88 domains
firstclassmag.com
*.firstclassmag.com
*.4bb825a3-bf66-411c-8eea-921ac42f0864.firstclassmag.com
*.apps.firstclassmag.com
*.client.firstclassmag.com
*.desktop.firstclassmag.com
*.gateway.firstclassmag.com
*.m.firstclassmag.com
*.mx.firstclassmag.com
*.ra.firstclassmag.com
*.rds.firstclassmag.com
*.remote.firstclassmag.com
*.remoteapp.firstclassmag.com
*.remoto.firstclassmag.com
*.vpn.firstclassmag.com
*.vpn1.firstclassmag.com
*.vpnssl.firstclassmag.com
*.www.firstclassmag.com
*.wwww.firstclassmag.com
*.apps.brandedlink.com
*.assets.brandedlink.com
*.bcfremote.brandedlink.com
brandedlink.com
*.brandedlink.com
*.client.brandedlink.com
*.clientesvpn.brandedlink.com
*.cloudvpn.brandedlink.com
*.demo.brandedlink.com
*.devarg.brandedlink.com
*.diikbcpcalendars.brandedlink.com
*.drvpn.brandedlink.com
*.dzvvirelay.brandedlink.com
*.email.brandedlink.com
*.ent.brandedlink.com
*.exch2016.brandedlink.com
*.fortigate.brandedlink.com
*.fortinet.brandedlink.com
*.fortivpn.brandedlink.com
*.gateway.brandedlink.com
*.help.brandedlink.com
*.homeoffice.brandedlink.com
*.hugzoex02.brandedlink.com
*.intranet.brandedlink.com
*.liora.brandedlink.com
*.login.brandedlink.com
*.logon.brandedlink.com
*.mail.brandedlink.com
*.mail1.brandedlink.com
*.mwhenizl.brandedlink.com
*.mywebmail.brandedlink.com
*.notexistsrd.brandedlink.com
*.notexistssmtp.brandedlink.com
*.ns.brandedlink.com
*.officevpn.brandedlink.com
*.ofinovardweb.brandedlink.com
*.ogrencieposta.brandedlink.com
*.orkflow.brandedlink.com
*.rdg.brandedlink.com
*.rdgw.brandedlink.com
*.rdp.brandedlink.com
*.rds1.brandedlink.com
*.rdweb.brandedlink.com
*.sales.brandedlink.com
*.sendy.brandedlink.com
*.server.brandedlink.com
*.souwebaccess.brandedlink.com
*.sslvpn3.brandedlink.com
*.store.brandedlink.com
*.supersets.brandedlink.com
*.support.brandedlink.com
*.test.brandedlink.com
*.virtualapps.brandedlink.com
*.vpn3.brandedlink.com
*.vpnssl.brandedlink.com
*.workspace.brandedlink.com
*.www.brandedlink.com
*.www1.brandedlink.com
*.xapp.brandedlink.com
*.zimbra.brandedlink.com
*.accounts.snapcchat.com
*.accunts.snapcchat.com
*.api.snapcchat.com
snapcchat.com
*.snapcchat.com
*.ww25.snapcchat.com
*.ww38.snapcchat.com
*.wwrdbjw.snapcchat.com
*.www6l6.snapcchat.com
Other domains in certificate