Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=notdesign.it
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 21, 2026
Valid Until
August 19, 2026
76 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9F:D7:8A:B2:D4:69:5C:E8:11:0C:C4:AF:5B:A2:EC:14:56:26:10:DA:7B:54:4A:9E:90:F5:1E:46:8D:DB:EA:C9
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
9drop.live
*.9drop.live
*.autodiscover.9drop.live
*.webmail.9drop.live
*.www.9drop.live
9999ddd.cc
*.9999ddd.cc
*.www.9999ddd.cc
avlulu188.xyz
*.avlulu188.xyz
*.ww25.avlulu188.xyz
calderone.com.au
*.calderone.com.au
cloudforged.co
*.cloudforged.co
*.ftp.cloudforged.co
*.host.cloudforged.co
*.ns2.cloudforged.co
*.www.cloudforged.co
darrylthegambler.com
*.darrylthegambler.com
*.6times.downloadhackedgames.com
*.checklife.downloadhackedgames.com
*.demo.downloadhackedgames.com
downloadhackedgames.com
*.downloadhackedgames.com
*.land.downloadhackedgames.com
*.shop.downloadhackedgames.com
dreamjobs.it
*.dreamjobs.it
e-zpassn.com
*.e-zpassn.com
*.ww25.e-zpassn.com
femdomocean.com
*.femdomocean.com
*.ww38.femdomocean.com
fitnesssage.club
*.fitnesssage.club
*.rkzueo.fitnesssage.club
garudaspin138.quest
*.garudaspin138.quest
*.www.garudaspin138.quest
jeverstube-sylt.de
*.jeverstube-sylt.de
*.c7.luhai.cn
*.clt.luhai.cn
*.iu0.luhai.cn
*.lpi.luhai.cn
luhai.cn
*.luhai.cn
*.nk.luhai.cn
*.w4.luhai.cn
marketresearchamerica.com
*.marketresearchamerica.com
megasearcher.com
*.megasearcher.com
moneracapitalfor.business
*.moneracapitalfor.business
*.u3l2uk.moneracapitalfor.business
notdesign.it
*.notdesign.it
orderelchihuahuitastacosalpastor.com
*.orderelchihuahuitastacosalpastor.com
*.2qyk0g.passigence.com
passigence.com
*.passigence.com
platinumcreditoffers.com
*.platinumcreditoffers.com
reddbet.com
*.reddbet.com
skywebmail.com
*.skywebmail.com
spainshop.cc
*.spainshop.cc
*.2d6al9.topcasinotop5.com
topcasinotop5.com
*.topcasinotop5.com
*.2bicc1.toptouchstormhub.info
toptouchstormhub.info
*.toptouchstormhub.info
windhamhotels.com
*.windhamhotels.com
*.ww16.windhamhotels.com
*.www.windhamhotels.com
*.m.yourvacationclub.com
*.neu.yourvacationclub.com
*.sitemap.yourvacationclub.com
*.sitemaps.yourvacationclub.com
yourvacationclub.com
*.yourvacationclub.com
Other domains in certificate