Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=grandpublic.info
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
March 26, 2026
Valid Until
June 24, 2026
37 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
6C:4C:EB:A5:5D:E8:08:96:3B:1F:76:6F:E8:18:29:11:82:3D:1D:94:49:D8:75:F6:46:40:16:C7:76:45:2B:91
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
spora.be
*.spora.be
*.admin.spora.be
*.beta.spora.be
*.emv1.spora.be
*.graaf.spora.be
*.m.spora.be
*.mta-sts.spora.be
*.new.spora.be
*.remote.spora.be
*.sso.spora.be
*.temp.spora.be
*.tourmanager.spora.be
*.webmail.spora.be
2jc5.com
*.2jc5.com
*.api.2jc5.com
*.dev.2jc5.com
*.mail.2jc5.com
*.www.2jc5.com
bubet.soccer
*.bubet.soccer
bunker.center
*.bunker.center
*.e3627c4b906e.bunker.center
*.magento.bunker.center
*.old.bunker.center
*.sitemaps.bunker.center
*.admin.dmdrive.ai
*.api.dmdrive.ai
dmdrive.ai
*.dmdrive.ai
*.www.dmdrive.ai
filza.org
*.filza.org
*.random.filza.org
*.ascmontaigne-org.grandpublic.info
grandpublic.info
*.grandpublic.info
*.lba.grandpublic.info
*.montaigne.grandpublic.info
*.papvireabc.grandpublic.info
*.recreation-film.grandpublic.info
*.togo.grandpublic.info
*.2b74dee8-a728-483f-8d9d-ab4e9bee803b.khmer-insurance.com
*.app.khmer-insurance.com
*.hostmaster.khmer-insurance.com
khmer-insurance.com
*.khmer-insurance.com
*.links.khmer-insurance.com
*.test.khmer-insurance.com
sweetescapesatx.com
*.sweetescapesatx.com
thunderbaybuilder.com
*.thunderbaybuilder.com
*.acerfh.tmqll.com
*.analytic.tmqll.com
*.baishenghu.tmqll.com
*.boschxd.tmqll.com
*.btfushi.tmqll.com
*.click.tmqll.com
*.competeworld.tmqll.com
*.galimard.tmqll.com
*.homesup.tmqll.com
*.huaicaism.tmqll.com
*.hzlsp.tmqll.com
*.insight.tmqll.com
*.kourenlan.tmqll.com
*.langnaifs.tmqll.com
*.mingyuqnge.tmqll.com
*.miny.tmqll.com
*.mojuedj.tmqll.com
*.qifansm.tmqll.com
*.qiqigouxl.tmqll.com
*.rate.tmqll.com
*.ruijism.tmqll.com
*.shopin.tmqll.com
*.tcjlbg.tmqll.com
tmqll.com
*.tmqll.com
*.weihangrj.tmqll.com
*.weikeli.tmqll.com
*.yingbeimy.tmqll.com
*.ymlsm.tmqll.com
*.youku.tmqll.com
*.yuanfengfs.tmqll.com
*.yzrjj.tmqll.com
*.zehnder.tmqll.com
toasted.info
*.toasted.info
Other domains in certificate