Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=katatoniacarnival.xyz
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 03, 2026
Valid Until
August 01, 2026
57 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8A:20:D0:A6:51:82:03:23:90:44:3B:AB:F1:E9:C3:E2:3C:F6:25:6A:E7:D7:25:BD:DE:26:CC:6E:90:04:E8:57
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
1q1s.com
*.1q1s.com
*.hostmaster.1q1s.com
*.m.1q1s.com
*.ww16.1q1s.com
404jp.sbs
*.404jp.sbs
*.acf58296-3a0a-4c24-b532-068b006a2941.coffeewithcrypto.io
*.admin.coffeewithcrypto.io
*.api.coffeewithcrypto.io
*.app.coffeewithcrypto.io
*.assets.coffeewithcrypto.io
*.bc80f128-4642-433f-aa6e-559c21b9fcc1.coffeewithcrypto.io
coffeewithcrypto.io
*.coffeewithcrypto.io
*.demo.coffeewithcrypto.io
*.dev.coffeewithcrypto.io
*.huylndemo.coffeewithcrypto.io
*.test.coffeewithcrypto.io
*.bigu.cug.au
cug.au
*.cug.au
*.edu.cug.au
*.0bvra.h8w.net
*.7ic.h8w.net
*.cnhft.h8w.net
*.cpcalendars.h8w.net
*.gs2.h8w.net
h8w.net
*.h8w.net
*.qq6.h8w.net
*.r9o.h8w.net
*.u6i.h8w.net
*.x2uh.h8w.net
*.ads.insuringsmile.com
*.email.insuringsmile.com
*.english.insuringsmile.com
insuringsmile.com
*.insuringsmile.com
*.old.insuringsmile.com
jiali55.cc
*.jiali55.cc
*.xn--jia-0w1e.jiali55.cc
katatoniacarnival.xyz
*.katatoniacarnival.xyz
l0.com.au
*.l0.com.au
*.0c1bb038-c70b-4afd-a64b-e96db0fbab70.paperfish.vip
*.82afe05b-de88-4786-81a9-4220cc861d40.paperfish.vip
*.admin.paperfish.vip
*.api.paperfish.vip
*.app.paperfish.vip
*.assets.paperfish.vip
*.blog.paperfish.vip
*.demo.paperfish.vip
*.dev.paperfish.vip
*.members.paperfish.vip
paperfish.vip
*.paperfish.vip
*.tan4yr.paperfish.vip
*.test.paperfish.vip
*.ueugjtan4yr.paperfish.vip
*.vip.paperfish.vip
*.www.paperfish.vip
*.wxopjtan4yr.paperfish.vip
*.admin.parksbuildingsupplync.com
*.api.parksbuildingsupplync.com
*.autodiscover.parksbuildingsupplync.com
*.outlook.parksbuildingsupplync.com
*.owa.parksbuildingsupplync.com
parksbuildingsupplync.com
*.parksbuildingsupplync.com
*.remote.parksbuildingsupplync.com
*.webmail.parksbuildingsupplync.com
*.www.parksbuildingsupplync.com
*.makeaphoto.tellastory.it
tellastory.it
*.tellastory.it
tsdaiting.com
*.tsdaiting.com
*.ww38.tsdaiting.com
*.www.tsdaiting.com
*.www.yesfitness.xyz
yesfitness.xyz
*.yesfitness.xyz
*.hostmaster.youhire.it
*.mail.youhire.it
youhire.it
*.youhire.it
Other domains in certificate