Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=campaigntoendaids.org
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
March 24, 2026
Valid Until
June 22, 2026
41 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
EF:2E:43:2C:C1:C0:BB:34:41:77:5E:8A:B9:8A:7A:75:C6:5E:3E:34:07:F7:37:93:BB:5B:C0:3C:57:7F:02:BC
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
stanleyaccess.buzz
*.stanleyaccess.buzz
business-it-support-services-01.click
*.business-it-support-services-01.click
bzfpg.cc
*.bzfpg.cc
c9mw3jz9e5.world
*.c9mw3jz9e5.world
cabinetsgranite.com
*.cabinetsgranite.com
cablegate.com
*.cablegate.com
californiapropertyinspection.com
*.californiapropertyinspection.com
campaigntoendaids.org
*.campaigntoendaids.org
characterboard.com
*.characterboard.com
cleveraisystems.com
*.cleveraisystems.com
competitivesuffering.com
*.competitivesuffering.com
compilechain.com
*.compilechain.com
coverfiregame.com
*.coverfiregame.com
datazn-data.com
*.datazn-data.com
rzytr.pro
*.rzytr.pro
salamiporkrindestelar.com
*.salamiporkrindestelar.com
scalegrowspot.com
*.scalegrowspot.com
sorting-out-264336314.click
*.sorting-out-264336314.click
soulcrawler.com
*.soulcrawler.com
spacestudiosgrowth.com
*.spacestudiosgrowth.com
sparqup.com
*.sparqup.com
speakingofcare.com
*.speakingofcare.com
sprux.network
*.sprux.network
sqwib.com
*.sqwib.com
sshxkk.ninja
*.sshxkk.ninja
staugustineshoresservicecorp.com
*.staugustineshoresservicecorp.com
stcushnr.com
*.stcushnr.com
stefanini-group-it.com
*.stefanini-group-it.com
subscriptionannual.com
*.subscriptionannual.com
teamaskachiefofstaffhq.com
*.teamaskachiefofstaffhq.com
tiktokforweb.com
*.tiktokforweb.com
tktcourier.com
*.tktcourier.com
tryanytautomation.com
*.tryanytautomation.com
trycodetogether.com
*.trycodetogether.com
update-android.club
*.update-android.club
weex.business
*.weex.business
weex.discount
*.weex.discount
weex.download
*.weex.download
weex.one
*.weex.one
wifii-germn-1.sbs
*.wifii-germn-1.sbs
winwithheyfrankey.com
*.winwithheyfrankey.com
wlfusd.org
*.wlfusd.org
wqiuoe6s5dd.cc
*.wqiuoe6s5dd.cc
xereo.net
*.xereo.net
xn--rstaurants-ilb.com
*.xn--rstaurants-ilb.com
Other domains in certificate