Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=257693.loan
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 03, 2026
Valid Until
May 04, 2026
76 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
60:F4:CC:27:CE:E5:A6:EF:1D:F4:0D:F5:07:A3:1A:38:2C:D4:F4:66:FE:8A:A5:AA:3E:76:A9:6D:E4:E2:46:25
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
broadlink.it
*.broadlink.it
013419.com
*.013419.com
257693.loan
*.257693.loan
31088.locker
*.31088.locker
3p3010.co
*.3p3010.co
482256.net
*.482256.net
514081.com
*.514081.com
527362.com
*.527362.com
53069.pro
*.53069.pro
797384.loan
*.797384.loan
81132.pictures
*.81132.pictures
832784.com
*.832784.com
8907677.vip
*.8907677.vip
91081.pictures
*.91081.pictures
95262.loan
*.95262.loan
977485.cc
*.977485.cc
aber.it
*.aber.it
aboutkids.it
*.aboutkids.it
acunavcrystal.com
*.acunavcrystal.com
affittasicapannoni.it
*.affittasicapannoni.it
aleje.it
*.aleje.it
arjon.bid
*.arjon.bid
barfshop.pl
*.barfshop.pl
bedandbreakfastdipuglia.it
*.bedandbreakfastdipuglia.it
bestdrones.it
*.bestdrones.it
blackroom.it
*.blackroom.it
catholic-answers-magazine-subscriptions.com
*.catholic-answers-magazine-subscriptions.com
celebsdb.org
*.celebsdb.org
cleaning-jobs-ca-tj.click
*.cleaning-jobs-ca-tj.click
comprareunnomeadominio.com
*.comprareunnomeadominio.com
crntruaronioasdalcore.cyou
*.crntruaronioasdalcore.cyou
difki.pro
*.difki.pro
elangwinmax.us
*.elangwinmax.us
fsyjjc.cn
*.fsyjjc.cn
hsdgh.shop
*.hsdgh.shop
inbjt504.com
*.inbjt504.com
qyoiy.pro
*.qyoiy.pro
rhxfhcv.cyou
*.rhxfhcv.cyou
ruilifeicui.com
*.ruilifeicui.com
sanmangopiemonte.com
*.sanmangopiemonte.com
scialuppa.com
*.scialuppa.com
seioa.org
*.seioa.org
specialistsgroup.com
*.specialistsgroup.com
trabotics.com
*.trabotics.com
tradewinsnow.cyou
*.tradewinsnow.cyou
Other domains in certificate