Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=rdxhd.work
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 02, 2026
Valid Until
July 01, 2026
31 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CC:3E:15:0B:49:C7:85:1E:FE:F7:AC:A9:6A:89:85:97:EF:7D:B7:E7:72:EB:27:A5:DB:85:41:F8:3E:5F:C2:55
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
tahminist.com
*.tahminist.com
*.admin.tahminist.com
*.report.tahminist.com
*.webmail.tahminist.com
*.ww25.tahminist.com
*.www.tahminist.com
5minprofitpages.com
*.5minprofitpages.com
*.clients.5minprofitpages.com
amber-trail.cz
*.amber-trail.cz
*.bank.btcml.com
btcml.com
*.btcml.com
*.mailx.btcml.com
*.mx3.btcml.com
*.ww38.btcml.com
chikmag.com.au
*.chikmag.com.au
*.129fe4cf-0313-402e-8fdd-8844b6ddd59c.diagnosia.org
*.ad5ad837-a5fb-42ae-9479-3baa878091eb.diagnosia.org
*.api.diagnosia.org
*.app.diagnosia.org
*.backup.diagnosia.org
*.cloud.diagnosia.org
*.dashboard.diagnosia.org
*.demo.diagnosia.org
*.dev.diagnosia.org
diagnosia.org
*.diagnosia.org
*.hostmaster.diagnosia.org
*.mail.diagnosia.org
*.mailer.diagnosia.org
*.new.diagnosia.org
*.qa.diagnosia.org
*.rd.diagnosia.org
*.rds.diagnosia.org
*.rdweb.diagnosia.org
*.remote.diagnosia.org
*.staging.diagnosia.org
*.uat.diagnosia.org
*.v2.diagnosia.org
*.web.diagnosia.org
*.webmail.diagnosia.org
ferienhaus-daenemark-vejlby.de
*.ferienhaus-daenemark-vejlby.de
*.ww16.ferienhaus-daenemark-vejlby.de
*.dev.fitnessfirstonline.com
fitnessfirstonline.com
*.fitnessfirstonline.com
*.mail.fitnessfirstonline.com
fruchtwasserembolie.de
*.fruchtwasserembolie.de
grandfinity.vip
*.grandfinity.vip
*.ww25.grandfinity.vip
*.ww38.grandfinity.vip
*.backend.lovelycorner.it
*.correo.lovelycorner.it
*.cpanel.lovelycorner.it
*.cpcontacts.lovelycorner.it
*.demo.lovelycorner.it
*.email.lovelycorner.it
*.ex02.lovelycorner.it
lovelycorner.it
*.lovelycorner.it
*.mail.lovelycorner.it
*.mymail.lovelycorner.it
*.redash.lovelycorner.it
*.superset-beta.lovelycorner.it
*.webmail.lovelycorner.it
*.www.lovelycorner.it
*.hostmaster.rdxhd.work
*.mail.rdxhd.work
rdxhd.work
*.rdxhd.work
*.www.rdxhd.work
refworks.de
*.refworks.de
rustyfig.com.au
*.rustyfig.com.au
*.admin.seductiveclothing.com
*.box.seductiveclothing.com
*.post.seductiveclothing.com
seductiveclothing.com
*.seductiveclothing.com
*.smtp.seductiveclothing.com
*.tw.seductiveclothing.com
*.ww38.seductiveclothing.com
Other domains in certificate