Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=overthink.studio
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 24, 2026
Valid Until
May 25, 2026
89 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
85:D8:62:CF:6D:36:4F:DE:95:6F:0B:BA:C2:F0:25:CC:53:7C:F6:74:D0:51:86:BA:62:E5:67:64:2D:6B:BA:45
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
ramseysoultions.com
*.ramseysoultions.com
*.admin.ramseysoultions.com
92231.plus
*.92231.plus
*.api.92231.plus
*.app.92231.plus
*.dev.92231.plus
*.docs.92231.plus
*.external.92231.plus
*.hr.92231.plus
*.intranet.92231.plus
*.xgcilexternal.92231.plus
autobras.com
*.autobras.com
*.hostmaster.autobras.com
*.m.autobras.com
*.sitemap.autobras.com
*.ww11.autobras.com
*.ww16.autobras.com
*.ww17.autobras.com
*.ww25.autobras.com
bypkru.org
*.bypkru.org
dev-newsite.online
*.dev-newsite.online
downloadtiktok.com
*.downloadtiktok.com
*.ww16.downloadtiktok.com
*.api.eetkamerstoelen.net
*.app.eetkamerstoelen.net
*.blog.eetkamerstoelen.net
*.demo.eetkamerstoelen.net
eetkamerstoelen.net
*.eetkamerstoelen.net
*.git.eetkamerstoelen.net
*.gitlab.eetkamerstoelen.net
*.hostmaster.eetkamerstoelen.net
*.log.eetkamerstoelen.net
*.m.eetkamerstoelen.net
*.mx.eetkamerstoelen.net
*.postmaster.eetkamerstoelen.net
*.public.eetkamerstoelen.net
*.root.eetkamerstoelen.net
*.secure.eetkamerstoelen.net
*.stage.eetkamerstoelen.net
*.webmail.eetkamerstoelen.net
febweb002.com
*.febweb002.com
flourishblogs.info
*.flourishblogs.info
hjtthj.com
*.hjtthj.com
*.a.overthink.studio
*.files.overthink.studio
overthink.studio
*.overthink.studio
*.ww25.overthink.studio
*.www.overthink.studio
patientcaretechnician.com
*.patientcaretechnician.com
*.random.patientcaretechnician.com
*.ww25.patientcaretechnician.com
*.bvhp.phaoj.com
*.cloud.phaoj.com
*.i.phaoj.com
phaoj.com
*.phaoj.com
*.rds.phaoj.com
*.vpn.phaoj.com
*.yamjerd.phaoj.com
*.zsyb.phaoj.com
*.jump.pub-bl-is.top
pub-bl-is.top
*.pub-bl-is.top
*.remote.sug777g.com
sug777g.com
*.sug777g.com
*.hostmaster.superfiesta.com
superfiesta.com
*.superfiesta.com
*.go.truyenqqto.info
truyenqqto.info
*.truyenqqto.info
universalimmigration.in
*.universalimmigration.in
*.com.worldbusk.org
*.guide-peche-aveyron.worldbusk.org
worldbusk.org
*.worldbusk.org
Other domains in certificate