Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=vespista.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 21, 2026
Valid Until
May 22, 2026
86 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F8:AE:2F:B7:5D:4C:B3:DA:7C:7F:DD:F3:42:3C:68:21:04:87:73:35:45:F0:0F:EF:94:AA:37:EC:EA:99:22:A0
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
acsyma.org
*.acsyma.org
actiontrailer.com
*.actiontrailer.com
anfassen.com
*.anfassen.com
anniejane.com
*.anniejane.com
apod7t7.cc
*.apod7t7.cc
bignutz.com
*.bignutz.com
chaleco.com
*.chaleco.com
*.bbs.costumestore.net
costumestore.net
*.costumestore.net
*.pay.costumestore.net
*.site.costumestore.net
*.store.costumestore.net
*.v1.costumestore.net
discountedlegalfees.com
*.discountedlegalfees.com
*.ebay.discountedlegalfees.com
*.remote.discountedlegalfees.com
*.spam1.discountedlegalfees.com
*.www.discountedlegalfees.com
emerald.net.au
*.emerald.net.au
*.pureclass.emerald.net.au
*.random.emerald.net.au
*.ww38.emerald.net.au
expresskey.store
*.expresskey.store
*.analytics.langbo.xyz
*.board.langbo.xyz
*.dev.langbo.xyz
*.h4j9lnopqu1amqgzqp.langbo.xyz
*.hostmaster.langbo.xyz
langbo.xyz
*.langbo.xyz
*.pl755ca0n.langbo.xyz
*.poc.langbo.xyz
*.qu848hfi.langbo.xyz
*.rs22wtbwq.langbo.xyz
*.admin.mavenarius.com
*.api.mavenarius.com
*.app.mavenarius.com
*.assets.mavenarius.com
*.axzjyuat.mavenarius.com
*.backup.mavenarius.com
*.cabinet.mavenarius.com
*.demo.mavenarius.com
*.hostmaster.mavenarius.com
*.lgevamailer.mavenarius.com
*.lwxazmailer.mavenarius.com
*.mail.mavenarius.com
*.mailer.mavenarius.com
mavenarius.com
*.mavenarius.com
*.members.mavenarius.com
*.qa.mavenarius.com
*.random.mavenarius.com
*.sitemap.mavenarius.com
*.sitemaps.mavenarius.com
*.soa.mavenarius.com
*.staging.mavenarius.com
*.test.mavenarius.com
*.testing.mavenarius.com
*.ubqnohostmaster.mavenarius.com
*.v1.mavenarius.com
*.v2.mavenarius.com
*.vpn.mavenarius.com
*.www.mavenarius.com
*.zynpkqui.mavenarius.com
*.admin.spotibank.com
*.backend.spotibank.com
spotibank.com
*.spotibank.com
*.ww7.spotibank.com
*.ww99.spotibank.com
*.hostmaster.tunuyan.com
*.m.tunuyan.com
tunuyan.com
*.tunuyan.com
*.ww16.tunuyan.com
*.ww25.tunuyan.com
*.www.tunuyan.com
vespista.com
*.vespista.com
Other domains in certificate