Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=trueflowai.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 08, 2026
Valid Until
April 08, 2026
51 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A5:AB:90:B3:CA:90:82:BB:A7:DB:64:41:9B:EF:EB:BE:5E:5F:5A:35:58:97:07:39:55:EA:9E:34:7A:48:B0:49
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
spanx.co
*.spanx.co
*.remote.spanx.co
*.ww38.spanx.co
76495.com
*.76495.com
84720.com
*.84720.com
*.random.84720.com
cheapfuel.us
*.cheapfuel.us
*.insight.cheapfuel.us
*.prod.cheapfuel.us
*.random.cheapfuel.us
*.ww1.cheapfuel.us
*.classifieds.costumeidea.com
*.com.costumeidea.com
costumeidea.com
*.costumeidea.com
*.thumbs.costumeidea.com
*.wordpress.costumeidea.com
*.www.costumeidea.com
dxr.au
*.dxr.au
ebonygirl.com
*.ebonygirl.com
falconry-in-scotland.co.uk
*.falconry-in-scotland.co.uk
*.random.falconry-in-scotland.co.uk
forexsigns.com
*.forexsigns.com
fredala.com
*.fredala.com
*.academy.invius.eu
*.admin.invius.eu
*.bans.invius.eu
*.cars.invius.eu
*.cs.invius.eu
*.discord.invius.eu
*.ekob.invius.eu
*.fc.invius.eu
*.gt.invius.eu
*.img.invius.eu
invius.eu
*.invius.eu
*.mf1.invius.eu
*.new.invius.eu
*.phpbb.invius.eu
*.svdl.invius.eu
*.tbs.invius.eu
*.test.invius.eu
sosos.org
*.sosos.org
systemscontrols.com
*.systemscontrols.com
totalwar.au
*.totalwar.au
*.1.trueflowai.com
*.7.trueflowai.com
*.account.trueflowai.com
*.accounts.trueflowai.com
*.api-doc.trueflowai.com
*.api-portal.trueflowai.com
*.api.trueflowai.com
*.app.trueflowai.com
*.aquasapienskangenteam.trueflowai.com
*.beta23.trueflowai.com
*.betastar.trueflowai.com
*.demo.trueflowai.com
*.freakoutsadventure.trueflowai.com
*.integration.trueflowai.com
*.portal.trueflowai.com
*.random.trueflowai.com
*.shreehariyoga.trueflowai.com
*.sitemap.trueflowai.com
*.staging.trueflowai.com
*.tenant1.trueflowai.com
*.test.trueflowai.com
trueflowai.com
*.trueflowai.com
*.weekendly.trueflowai.com
*.ww7.trueflowai.com
*.www.trueflowai.com
uspostofficejobs.com
*.uspostofficejobs.com
xn--homopathische-taschenapotheke-i5c.de
*.xn--homopathische-taschenapotheke-i5c.de
yogurtdiet.com
*.yogurtdiet.com
Other domains in certificate