Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=9qtm.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 25, 2026
Valid Until
July 24, 2026
64 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3D:92:7D:96:DE:7B:A8:A4:6A:2C:97:35:CF:3D:DC:E4:D2:21:A0:FE:CF:DC:C7:48:78:34:14:AB:D2:3F:78:1E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
9qtm.com
*.9qtm.com
*.www.9qtm.com
*.app.meireles.es
*.autodiscover.meireles.es
*.backend.meireles.es
*.branches.meireles.es
*.cytwoeuq.meireles.es
*.dc-d2a4b54e047f.meireles.es
*.ipv6.meireles.es
*.locations.meireles.es
meireles.es
*.meireles.es
*.ns.meireles.es
*.shop.meireles.es
*.umjkgprc.meireles.es
*.usps.meireles.es
*.v1.meireles.es
*.wap.meireles.es
*.webmail.meireles.es
*.whm.meireles.es
*.ww.meireles.es
*.www.meireles.es
*.a.menu.pw
*.admin.menu.pw
*.amircafe.menu.pw
*.analytic.menu.pw
*.analyze.menu.pw
*.app.menu.pw
*.bi.menu.pw
*.bigdata.menu.pw
*.carbon.menu.pw
*.chart.menu.pw
*.chenin.menu.pw
*.cityfood.menu.pw
*.da.menu.pw
*.dan.menu.pw
*.dashboard.menu.pw
*.data.menu.pw
*.demo.menu.pw
*.forecast.menu.pw
*.forno.menu.pw
*.genaro.menu.pw
*.hezarafsan.menu.pw
*.intel.menu.pw
*.intelligence.menu.pw
*.kiosk.menu.pw
*.kkyqfcarbon.menu.pw
*.koohestan.menu.pw
*.kubaba.menu.pw
*.mahibazan.menu.pw
*.mail.menu.pw
*.mamounia.menu.pw
menu.pw
*.menu.pw
*.narenjestan.menu.pw
*.narenjestantehran.menu.pw
*.nckaggenaro.menu.pw
*.nest.menu.pw
*.notexistsdan.menu.pw
*.notexistsqamarcafe.menu.pw
*.preview.menu.pw
*.proshat.menu.pw
*.qamarcafe.menu.pw
*.rance.menu.pw
*.rooflounge.menu.pw
*.schonbrun.menu.pw
*.sm.menu.pw
*.smtp.menu.pw
*.superset-beta.menu.pw
*.superset.menu.pw
*.tomo.menu.pw
*.admin.undertake.it
*.api.undertake.it
*.app.undertake.it
*.backend.undertake.it
*.data.undertake.it
*.dev.undertake.it
*.internal.undertake.it
*.metric.undertake.it
*.notexistsstaging.undertake.it
*.should.undertake.it
*.stats.undertake.it
*.summary.undertake.it
*.superset.undertake.it
undertake.it
*.undertake.it
*.visual.undertake.it
whatsomewouldcalllies.com
*.whatsomewouldcalllies.com
Other domains in certificate