Open
Cached
·
just now
79/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=xn--fahrrder-4za.ch
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 27, 2026
Valid Until
April 27, 2026
64 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
42:E3:1C:D1:C2:1F:97:56:EC:A2:9C:22:34:8B:FF:7F:0E:61:CB:1D:5E:2C:A1:30:26:57:99:22:2F:80:A3:37
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
above.de
*.above.de
*.cdg2.above.de
*.fr.above.de
bohemians.com.au
*.bohemians.com.au
canadianrider.com
*.canadianrider.com
*.random.canadianrider.com
chizb.site
*.chizb.site
dirtyflirt7.com
*.dirtyflirt7.com
*.random.dirtyflirt7.com
dripdrip.store
*.dripdrip.store
empirestreaming.us
*.empirestreaming.us
freedombrewing.com
*.freedombrewing.com
*.random.freedombrewing.com
gnike.com
*.gnike.com
guitardater.com
*.guitardater.com
*.random.guitardater.com
*.ww1.guitardater.com
gwensbridalboutique.com
*.gwensbridalboutique.com
*.random.gwensbridalboutique.com
hongkongapartmentsop.site
*.hongkongapartmentsop.site
jailpayment.com
*.jailpayment.com
*.random.jailpayment.com
julietabh.com
*.julietabh.com
*.random.julietabh.com
kicksrew.com
*.kicksrew.com
*.random.kicksrew.com
lineacessorios.online
*.lineacessorios.online
*.aaa.localbitcoinms.com
*.admin.localbitcoinms.com
*.hostmaster.localbitcoinms.com
localbitcoinms.com
*.localbitcoinms.com
*.secure.localbitcoinms.com
*.ww25.localbitcoinms.com
*.www1.localbitcoinms.com
luxury-suvs-intl.site
*.luxury-suvs-intl.site
mr20movie.site
*.mr20movie.site
peconforto.site
*.peconforto.site
protocolodisfuncion.site
*.protocolodisfuncion.site
*.random.robloxporn.com
robloxporn.com
*.robloxporn.com
rozvagaonline.space
*.rozvagaonline.space
*.imap.rtpmedan4d.xyz
rtpmedan4d.xyz
*.rtpmedan4d.xyz
*.smtp.rtpmedan4d.xyz
*.8d7c8a0446f1.sky777.cc
*.login.sky777.cc
*.m.sky777.cc
sky777.cc
*.sky777.cc
*.www.sky777.cc
*.random.transliteracy.com
transliteracy.com
*.transliteracy.com
*.adfs.watchcartoonsonline.co
*.hub.watchcartoonsonline.co
watchcartoonsonline.co
*.watchcartoonsonline.co
*.ww25.watchcartoonsonline.co
*.random.whiskeybonesroadhouse.com
whiskeybonesroadhouse.com
*.whiskeybonesroadhouse.com
xn--fahrrder-4za.ch
*.xn--fahrrder-4za.ch
*.random.xn--schulvortrge-pcb.de
xn--schulvortrge-pcb.de
*.xn--schulvortrge-pcb.de
Other domains in certificate