DNS Gurus
Open Cached · just now
77/100 SECURITY SCORE

Certificate Information

Subject
CN=bp-alpha.joinbreakthru.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 01, 2025
Valid Until
December 30, 2025 37 days
Public Key
RSA 2048 bit Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D4:1D:8D:D0:7D:A7:75:5B:4F:C7:04:DC:12:0F:4A:0E:C5:D7:F0:6C:CC:C7:D5:D5:20:A6:1B:B5:B2:1D:D7:AD
Alternative Names
100 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains
ssh.dev

Other domains in certificate

emma.adalab.es
adamsartain.work
www.alemey.com
sim-records.alledotech.in
appcognita.com
www.applicentric.ng
atlocal.app
staging.autowass.ro
www.bankofchina.ai
scsconsulting.beaconforce.com
auspost.beetek.net
bentsukun.ch
sync-space.bhushanjoshi.site
crowd.aimmo.co.kr
corporate.cardata.com.tr
pro.medias.com.ua
acbot.xbot.com.vn
comingout.health
www.conexionycontrol.com
app.crushitout.com
www.datasol.dev
devonboyz.com
collection.dhygen.com
portal-hml.doctorclin.com.br
dopaflow.co
www.duliptech.com
ewts-pwa.empower.eco
www.estudosonline.com.br
www.exceed.uy
www.falopes.com.br
cti.fdrive.cz
flexntone.co.uk
bokning.flygeventyr.se
www.staging.formpup.com
www.futurity.technology
owner.giovanniliboni.it
promotion.glencapitals.com
gyaanai.org
henry.nz
hookedmusic.app
nthaimernshop.id.vn
ai.ideac.top
labellapizzaangra.infinitifood.com.br
leafting.jingjietan.com
bp-alpha.joinbreakthru.com
www.joshuarogersart.com
dev.blackfire.kanektech.com dev.portal.kanektech.com
stg-admin.awetism.katomaran.app
www.kevinhcross.dev
www.librexapp.com
inventaire-outils-staging.marieblachere.fr
firebase-app.meercat.in
menperfume.net
app.metrarev.com
meushabitos.online
link.mobdatathailand.org
nayvid.com www.nayvid.com
www.netxys.com
www.nikloveskea.com
nkapventures.com
only1earth.kr
orangeflags.dev
rewards-dev.pocketpoints.com
research.r253.dev
heartcore.radiobaixa.com
rangercoder.space
hcm.redsols.com
www.rondeibert.com
www.safehouseforjustice.org
savenremedies.com
scientificsw.com
scottguillaudeu.com
seemychain.com
crkanela-porteria.segurdiez.com
demo.speiro.app
www.stayillusion.ch
api.steelspace.io
www.strong.works
sulibarat.hu
bodacivilclaudiayernesto.swanmoments.net
ta-yoga.com
tafrikt.com
www.techartsolutions.com
www.techsouptogether.it
pt.testla.nl
micro.via.thuiz.com
www.trazza360.com
app.truliv.com.br
muji.ugomeki.jp
www.ukeyyo.com
ho.usemason.com
www.vidaconia.blog
www.wlo-info.fr
myco.work.gd
wrait.ai
trying-out-vue.zacke.dev
app.zenalytics.org