Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=clicklends.co
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 22, 2026
Valid Until
August 20, 2026
71 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
43:63:E2:20:5C:EB:43:43:CA:BB:0D:11:4E:65:D9:E5:CC:F0:BF:0A:F9:08:EC:17:0B:EC:98:F8:6A:8C:D0:3A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
striponchain.com
*.striponchain.com
*.assets.striponchain.com
*.demo.striponchain.com
*.vpn.striponchain.com
1xbet-gamesx.site
*.1xbet-gamesx.site
2jiocw.cyou
*.2jiocw.cyou
48385.loan
*.48385.loan
61909.my
*.61909.my
77007.lgbt
*.77007.lgbt
872744.loan
*.872744.loan
aq-techs.org
*.aq-techs.org
baomu95.com
*.baomu95.com
clicklends.co
*.clicklends.co
*.smtp.clicklends.co
*.track.clicklends.co
*.ww25.clicklends.co
diyhierarchy.live
*.diyhierarchy.live
dolcidicara.com
*.dolcidicara.com
esportsflow.click
*.esportsflow.click
gledek88sob.my
*.gledek88sob.my
hyizi.com
*.hyizi.com
itsibl.digital
*.itsibl.digital
jpdiraja33.lat
*.jpdiraja33.lat
lgodewaap.com
*.lgodewaap.com
mindtraining.icu
*.mindtraining.icu
mywashingtonfcu.com
*.mywashingtonfcu.com
navigatenarrative.xyz
*.navigatenarrative.xyz
navigatenature.xyz
*.navigatenature.xyz
navigatenavigator.xyz
*.navigatenavigator.xyz
navigateneat.xyz
*.navigateneat.xyz
navigatenest.xyz
*.navigatenest.xyz
navigatenuance.xyz
*.navigatenuance.xyz
navigatenurture.xyz
*.navigatenurture.xyz
navigatenurtured.xyz
*.navigatenurtured.xyz
nergas.info
*.nergas.info
newrockk.shop
*.newrockk.shop
nilecinemasreview.com
*.nilecinemasreview.com
nyvoria.com
*.nyvoria.com
panda555zv2.xyz
*.panda555zv2.xyz
shoptoru.online
*.shoptoru.online
slotfachai.top
*.slotfachai.top
software-bug.com
*.software-bug.com
solarien.solar
*.solarien.solar
soltau-online.de
*.soltau-online.de
tealshield.com
*.tealshield.com
thegardenspecialists.xyz
*.thegardenspecialists.xyz
tkjie.gdn
*.tkjie.gdn
tlny.pw
*.tlny.pw
Other domains in certificate