Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=gateviptd.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 14, 2026
Valid Until
July 13, 2026
50 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
FD:AA:24:26:60:61:43:D8:21:0C:7D:22:C0:DC:B7:46:5F:90:7E:69:47:FD:CF:54:73:2F:47:F0:76:9A:35:09
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
88 domains
xpjk.one
*.xpjk.one
042439.vip
*.042439.vip
078587.co
*.078587.co
117199.co
*.117199.co
15096.blog
*.15096.blog
17394.plus
*.17394.plus
25271.sx
*.25271.sx
anotherdisneypodcast.com
*.anotherdisneypodcast.com
answerrebel.com
*.answerrebel.com
domainedelhortus.com
*.domainedelhortus.com
frenchfaienceantique.com
*.frenchfaienceantique.com
gateviptd.com
*.gateviptd.com
glowoizy.com
*.glowoizy.com
goignyteplatform.com
*.goignyteplatform.com
goknowledgerelay.com
*.goknowledgerelay.com
gold-vip9.cc
*.gold-vip9.cc
goldlovebank.info
*.goldlovebank.info
gpgdm.town
*.gpgdm.town
jrmet.top
*.jrmet.top
ldodl2u40uccsku.top
*.ldodl2u40uccsku.top
losangelesfastfood.maison
*.losangelesfastfood.maison
lwplu.town
*.lwplu.town
m188rtp.xyz
*.m188rtp.xyz
manipulate.im
*.manipulate.im
mediauraapps.com
*.mediauraapps.com
medicegence.com
*.medicegence.com
medicegent.com
*.medicegent.com
menkesystems.com
*.menkesystems.com
mevsimler.info
*.mevsimler.info
partnerwithgilwellholdings.com
*.partnerwithgilwellholdings.com
paseastemtkg.top
*.paseastemtkg.top
peakflowgrowth.com
*.peakflowgrowth.com
peakhqgrowth.com
*.peakhqgrowth.com
pherode.com
*.pherode.com
quicktool.co
*.quicktool.co
renault-trading03.com
*.renault-trading03.com
rerver.com
*.rerver.com
usefulthings.co
*.usefulthings.co
w13724270.com
*.w13724270.com
w13728564.com
*.w13728564.com
xalphaguard.com
*.xalphaguard.com
xaudqimhotmh.cc
*.xaudqimhotmh.cc
xn--yety95f.cc
*.xn--yety95f.cc
xpubot.com
*.xpubot.com
Other domains in certificate