Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=cg5.app
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
May 31, 2026
Valid Until
August 29, 2026
80 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C2:31:20:A0:E6:CE:99:91:0F:64:9C:FD:D0:1F:CF:81:E9:25:72:64:23:BF:C4:EC:F7:48:4D:07:62:E1:75:12
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
gloop.lol
*.gloop.lol
cg5.app
*.cg5.app
com-etcojb.vip
*.com-etcojb.vip
craftedtraveller.live
*.craftedtraveller.live
d-e.app
*.d-e.app
debd6wiksoyouwj.my
*.debd6wiksoyouwj.my
di-ay.com
*.di-ay.com
dynamicpieplatform.info
*.dynamicpieplatform.info
e2uattractions.com
*.e2uattractions.com
efforts.in
*.efforts.in
endur-ance.com
*.endur-ance.com
endure-ance.com
*.endure-ance.com
endureence.com
*.endureence.com
explainervideoagency.com
*.explainervideoagency.com
fashionnailswi.com
*.fashionnailswi.com
feeder.in
*.feeder.in
frmaillot.com
*.frmaillot.com
gifsanimadosjas.immobilien
*.gifsanimadosjas.immobilien
githuber.com
*.githuber.com
glementdersot.info
*.glementdersot.info
glorybud.com
*.glorybud.com
glxbhqt.my
*.glxbhqt.my
glyky.town
*.glyky.town
guidancerb2bsolution.info
*.guidancerb2bsolution.info
gyhodu.pro
*.gyhodu.pro
gzhjh62pq.top
*.gzhjh62pq.top
halobet-1.click
*.halobet-1.click
halobet-3.click
*.halobet-3.click
housesforrent.in
*.housesforrent.in
knifecrime.org
*.knifecrime.org
koenigrealestate.com
*.koenigrealestate.com
krungshing.com
*.krungshing.com
landingjazz.com
*.landingjazz.com
lensprotocoi.com
*.lensprotocoi.com
levitalsystem.com
*.levitalsystem.com
lex-press.com
*.lex-press.com
linkmailmendteam.info
*.linkmailmendteam.info
livexporno.com
*.livexporno.com
lryvz.work
*.lryvz.work
luckysweetsgirls.info
*.luckysweetsgirls.info
lucuary.com
*.lucuary.com
lunora-store.com
*.lunora-store.com
lureza.net
*.lureza.net
m5wp2h3jw.top
*.m5wp2h3jw.top
mamaskuche.com
*.mamaskuche.com
Other domains in certificate