Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=xn--sjq.com
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
May 30, 2026
Valid Until
August 28, 2026
63 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
99:A6:C8:93:16:60:92:B7:2F:58:4F:89:95:BB:32:EF:19:7D:F2:33:56:FC:99:5B:82:DF:92:63:35:81:00:27
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
officora.com
*.officora.com
*.26adc254-108f-46b4-ac88-bde90d76d780.officora.com
*.admin.officora.com
*.api.officora.com
*.assets.officora.com
*.backup.officora.com
*.demo.officora.com
*.dev.officora.com
*.f98620e0-3897-4e02-9f63-e157866e7a52.officora.com
*.new.officora.com
*.test.officora.com
*.vpn.officora.com
*.wakdau.officora.com
4gphones.it
*.4gphones.it
allamericanfloats.com
*.allamericanfloats.com
*.ww38.allamericanfloats.com
allcoast.au
*.allcoast.au
*.ww25.allcoast.au
*.ww38.allcoast.au
apple138.net
*.apple138.net
*.beta-ci.apple138.net
*.www.apple138.net
bronbatorijscoach.com
*.bronbatorijscoach.com
*.lc.bronbatorijscoach.com
esperienzepersonali.it
*.esperienzepersonali.it
higherorlowergame.co
*.higherorlowergame.co
httpsalextv.vip
*.httpsalextv.vip
*.members.httpsalextv.vip
internet2u.biz
*.internet2u.biz
kerrassentials.site
*.kerrassentials.site
*.api.mahila.it
*.backend.mahila.it
*.demo.mahila.it
mahila.it
*.mahila.it
*.eservice.nationalgeneral.co
*.esign.nationalgeneral.co
nationalgeneral.co
*.nationalgeneral.co
*.rvquotesqa.nationalgeneral.co
*.wiki.nationalgeneral.co
*.ww38.nationalgeneral.co
nbagleaguetracker.com
*.nbagleaguetracker.com
*.test.nbagleaguetracker.com
*.ww7.nbagleaguetracker.com
pandorabracelets.com
*.pandorabracelets.com
pcjss-cht.org
*.pcjss-cht.org
seniorshealthinsurance.au
*.seniorshealthinsurance.au
servicecity.it
*.servicecity.it
*.com.smyk.io
smyk.io
*.smyk.io
*.us.smyk.io
*.ww25.smyk.io
*.random.snap.co.za
snap.co.za
*.snap.co.za
*.ww38.snap.co.za
studnercostlycomr.sbs
*.studnercostlycomr.sbs
swiftly.au
*.swiftly.au
*.random.takethissurvey.com
takethissurvey.com
*.takethissurvey.com
*.ww25.takethissurvey.com
thekindshop.store
*.thekindshop.store
whichdesigner.com.au
*.whichdesigner.com.au
*.c.xn--sjq.com
*.wildcard.xn--sjq.com
xn--sjq.com
*.xn--sjq.com
Other domains in certificate