Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=chime.cc
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 22, 2026
Valid Until
August 20, 2026
58 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A3:8B:81:46:E8:AF:D3:F3:6D:83:75:7D:54:8A:CC:46:B3:E8:9E:99:B1:33:A1:13:94:6E:1C:26:D6:BA:ED:92
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
ecollege.us
*.ecollege.us
*.admin.ecollege.us
*.auth.ecollege.us
*.cpcalendars.ecollege.us
*.demo.ecollege.us
*.login.ecollege.us
*.lyncdiscover.ecollege.us
*.mail.ecollege.us
*.mysql.ecollege.us
*.ns.ecollege.us
*.ssh.ecollege.us
*.webmail.ecollege.us
*.ww7.ecollege.us
*.www.ecollege.us
*.www3.ecollege.us
borwal.com
*.borwal.com
*.mx7.borwal.com
*.admin.casamania.com
*.api.casamania.com
casamania.com
*.casamania.com
*.dedon.casamania.com
*.demo.casamania.com
*.eternity.casamania.com
*.aang-dev1.chime.cc
*.aang-dev4.chime.cc
*.app-dev5.chime.cc
*.chime-web.chime.cc
chime.cc
*.chime.cc
*.infraservice.chime.cc
*.kyc-dev4.chime.cc
*.mailx.chime.cc
*.mx.chime.cc
*.nautilus-dev5.chime.cc
*.notifications-dev1.chime.cc
*.notifications-dev5.chime.cc
*.notifications.chime.cc
*.notify.chime.cc
*.overwatch-dev2.chime.cc
*.persona-dev3.chime.cc
*.ww1.chime.cc
*.ww38.chime.cc
*.ww7.chime.cc
*.ar.globalstrategies.it
*.checkout.globalstrategies.it
*.email.globalstrategies.it
globalstrategies.it
*.globalstrategies.it
*.hostmaster.globalstrategies.it
*.mail.globalstrategies.it
*.mx.globalstrategies.it
*.owa.globalstrategies.it
*.pop.globalstrategies.it
*.portal.globalstrategies.it
*.pvitu.globalstrategies.it
*.ra-vpn.globalstrategies.it
*.rdweb.globalstrategies.it
*.remote.globalstrategies.it
*.roaming.globalstrategies.it
*.sama.globalstrategies.it
*.secure.globalstrategies.it
*.secureportal.globalstrategies.it
*.sslvpn.globalstrategies.it
*.svpnph.globalstrategies.it
*.virtual.globalstrategies.it
*.vpnadm.globalstrategies.it
*.vpnapac.globalstrategies.it
*.vpnma.globalstrategies.it
*.vpnpa.globalstrategies.it
*.webmail.globalstrategies.it
*.www.globalstrategies.it
*.xapp.globalstrategies.it
*.ap.mart.de
*.console.mart.de
*.erotik.mart.de
*.famyly.mart.de
*.m.mart.de
mart.de
*.mart.de
*.mx.mart.de
*.spiriferglaberw.mart.de
*.web.mart.de
*.163e1590-8dc1-4deb-a241-3751fd483637.yellowshit.com
*.hostmaster.yellowshit.com
*.www.yellowshit.com
yellowshit.com
*.yellowshit.com
Other domains in certificate