Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=cryptag.xyz
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 26, 2026
Valid Until
August 24, 2026
74 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
30:8E:AE:5E:15:46:9E:13:29:F4:AD:2B:29:C6:3E:90:9C:42:2E:A7:41:66:88:73:BC:45:6C:3D:AF:60:9F:56
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
junkgentlemen.com
*.junkgentlemen.com
*.8771ac4a-01ba-4125-8f89-664efd502d69.junkgentlemen.com
*.bd2475be3dc4.junkgentlemen.com
*.cpcalendars.junkgentlemen.com
*.cpcontacts.junkgentlemen.com
*.notexistswebdisk.junkgentlemen.com
*.sitemap.junkgentlemen.com
*.sitemaps.junkgentlemen.com
*.staging.junkgentlemen.com
*.webdisk.junkgentlemen.com
*.whm.junkgentlemen.com
*.wildcard.junkgentlemen.com
*.admin.blog.irish
*.analytics.blog.irish
*.api.blog.irish
*.aw.blog.irish
blog.irish
*.blog.irish
*.cafr.blog.irish
*.chat.blog.irish
*.drink5.blog.irish
*.ftp.blog.irish
*.in.blog.irish
*.live.blog.irish
*.m.blog.irish
*.memb.blog.irish
*.monitoring.blog.irish
*.my-preproduction-int.blog.irish
*.notexistssat1.blog.irish
*.partner-tools.blog.irish
*.people.blog.irish
*.remote.blog.irish
*.sandbox.blog.irish
*.sat1.blog.irish
*.search-desc.blog.irish
*.superset.blog.irish
*.webdirectorysubmissionlist.blog.irish
*.workflow.blog.irish
*.api.cryptag.xyz
*.app.cryptag.xyz
cryptag.xyz
*.cryptag.xyz
*.d.cryptag.xyz
*.m.cryptag.xyz
*.vnc9y2.cryptag.xyz
*.4aefa1e1-0242-4f0d-bbd4-3d7a059174b4.david.airforce
*.admin.david.airforce
*.api.david.airforce
*.app.david.airforce
*.autodiscover.david.airforce
*.backup.david.airforce
*.btwztuat.david.airforce
*.dashboard.david.airforce
david.airforce
*.david.airforce
*.demo.david.airforce
*.dev.david.airforce
*.gfquritl.david.airforce
*.hostmaster.david.airforce
*.mail.david.airforce
*.mailer.david.airforce
*.marketing.david.airforce
*.news.david.airforce
*.qa.david.airforce
*.secure.david.airforce
*.staging.david.airforce
*.stg.david.airforce
*.test.david.airforce
*.uat.david.airforce
*.v1.david.airforce
*.v2.david.airforce
*.web.david.airforce
*.z0054g.david.airforce
*.15.l2p.info
*.16.l2p.info
*.17.l2p.info
*.19.l2p.info
*.1f.l2p.info
*.1i.l2p.info
*.1o.l2p.info
*.admin.l2p.info
*.api.l2p.info
l2p.info
*.l2p.info
*.mail.l2p.info
o2tvseries.mobi
*.o2tvseries.mobi
*.tjdytadmin.o2tvseries.mobi
*.ww1.o2tvseries.mobi
Other domains in certificate