Open
Cached
·
just now
91/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=chriswelfing.co
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 30, 2026
Valid Until
July 29, 2026
62 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
07:44:22:C1:81:B2:4A:6F:A8:66:57:CC:7F:EB:1C:8C:32:8D:5C:AD:E1:21:CA:89:16:E7:52:83:45:36:AC:6D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Excellent
max-age=31536000; includeSubDomains; preload
X-Frame-Options
Excellent
DENY
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin
Permissions-Policy
Present
geolocation=(), midi=(), sync-xhr=(); +6 more
Recommendations
- • Add Content-Security-Policy header to prevent XSS attacks
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
vcdn.fun
*.vcdn.fun
*.webmulti.vcdn.fun
baxter.com.au
*.baxter.com.au
*.dev.baxter.com.au
*.pi.baxter.com.au
*.ww38.baxter.com.au
beingomatic.site
*.beingomatic.site
*.ww38.beingomatic.site
*.www.beingomatic.site
chriswelfing.co
*.chriswelfing.co
*.ww38.chriswelfing.co
*.demo.genderedviolence.com
genderedviolence.com
*.genderedviolence.com
*.admin.goso.it
*.analytics.goso.it
*.api.goso.it
*.app.goso.it
*.chart.goso.it
*.dashs.goso.it
*.demo.goso.it
goso.it
*.goso.it
*.hostmaster.goso.it
*.redash.goso.it
*.reporting.goso.it
*.rivatr.goso.it
*.staging.goso.it
*.superset.goso.it
*.webmail.goso.it
homedit.xyz
*.homedit.xyz
jonthefreelancernew.com
*.jonthefreelancernew.com
lalil.site
*.lalil.site
mobiduze.com
*.mobiduze.com
mystitchhealth.com
*.mystitchhealth.com
outreboo.info
*.outreboo.info
rastead.com
*.rastead.com
russiangas.pw
*.russiangas.pw
rzyxdwyitg.cc
*.rzyxdwyitg.cc
saascli.com
*.saascli.com
saascli.info
*.saascli.info
saascliff.info
*.saascliff.info
sgbqk.loans
*.sgbqk.loans
sggk.shop
*.sggk.shop
skylinecapsfund.com
*.skylinecapsfund.com
smartquippyai.com
*.smartquippyai.com
tamelarson.cfd
*.tamelarson.cfd
*.brittanythayer.thayer.us
*.cpcalendars.thayer.us
*.dealsnoop.thayer.us
*.jayleighs.thayer.us
*.office.thayer.us
thayer.us
*.thayer.us
thehwb.shop
*.thehwb.shop
tirivago.com
*.tirivago.com
*.ww16.tirivago.com
uplimva.com
*.uplimva.com
ventmules.shop
*.ventmules.shop
*.gbh-lifesciencewvw.voirfilms.la
*.hostmaster.voirfilms.la
voirfilms.la
*.voirfilms.la
*.ww6.voirfilms.la
*.wwv.voirfilms.la
Other domains in certificate