Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=alexpastor.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 12, 2026
Valid Until
May 13, 2026
75 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
25:30:37:DC:1A:CC:A3:63:39:A2:42:43:10:2A:A9:C7:64:5B:0C:1E:1E:C5:C7:05:5A:1B:E6:AA:43:48:D9:F7
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
redwhitebluelandflag.com
*.redwhitebluelandflag.com
*.app.redwhitebluelandflag.com
123anime.to
*.123anime.to
*.hostmaster.123anime.to
*.mail.123anime.to
*.sitemap.123anime.to
*.ww38.123anime.to
*.www.123anime.to
alexpastor.com
*.alexpastor.com
*.vpn.alexpastor.com
gorba.store
*.gorba.store
guestblog.com
*.guestblog.com
guestblogs.com
*.guestblogs.com
hadietablighati.ir
*.hadietablighati.ir
harrybolz.love
*.harrybolz.love
highseasvoyage.com
*.highseasvoyage.com
ica-security.com
*.ica-security.com
immigrationlawyers719557.icu
*.immigrationlawyers719557.icu
inhsvy.net
*.inhsvy.net
insightmarketplatform.com
*.insightmarketplatform.com
internationalcommittee.com
*.internationalcommittee.com
jbeihd233.my
*.jbeihd233.my
kep53.top
*.kep53.top
laynhg.my
*.laynhg.my
luckybikini.com
*.luckybikini.com
modofinishing.com
*.modofinishing.com
mtglahorda.market
*.mtglahorda.market
musicalwarfare.com
*.musicalwarfare.com
nakedgirls.site
*.nakedgirls.site
opg88.org
*.opg88.org
privacycontext.com
*.privacycontext.com
radiologie-vertou.com
*.radiologie-vertou.com
readtopic.com
*.readtopic.com
realredirect.site
*.realredirect.site
*.app.redwhitebluelandflags.com
redwhitebluelandflags.com
*.redwhitebluelandflags.com
rideordietattoo.com
*.rideordietattoo.com
trymightyhorse.com
*.trymightyhorse.com
tryniceboard.business
*.tryniceboard.business
ukstarchemiste.com
*.ukstarchemiste.com
up-bet.com
*.up-bet.com
urbandelivery.it
*.urbandelivery.it
viraltxx.shop
*.viraltxx.shop
xn--hgr.top
*.xn--hgr.top
xn--hxt413e9jar82d.com
*.xn--hxt413e9jar82d.com
xn--jvrxlk09h.com
*.xn--jvrxlk09h.com
xyjff.net
*.xyjff.net
yespopi.com
*.yespopi.com
yogaresorts.it
*.yogaresorts.it
Other domains in certificate