Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=papakearesort.net
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 20, 2026
Valid Until
August 18, 2026
71 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
2A:57:22:8D:77:8B:07:A2:DC:46:11:23:E0:3F:52:B2:5B:49:F8:03:C2:BA:D4:0B:2C:95:24:9A:79:2C:32:7F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
afkhosting.top
*.afkhosting.top
*.0afmf.afkhosting.top
*.4yj7f.afkhosting.top
*.60t9v.afkhosting.top
*.6cd9j.afkhosting.top
*.6y8gt.afkhosting.top
*.87ab5.afkhosting.top
*.8hy5t.afkhosting.top
*.8r9pg.afkhosting.top
*.96c54.afkhosting.top
*.aowpq.afkhosting.top
*.aqzmk.afkhosting.top
*.b5hyr.afkhosting.top
*.fdb74.afkhosting.top
*.hgsq5.afkhosting.top
*.ifeixm.afkhosting.top
*.igqlc.afkhosting.top
*.ilysrks0v9.afkhosting.top
*.l0r4m.afkhosting.top
*.ndwbyl0r4m.afkhosting.top
*.osldc.afkhosting.top
*.q2s8t.afkhosting.top
*.qrpbm96c54.afkhosting.top
*.rczhl.afkhosting.top
*.www.afkhosting.top
*.x7pal.afkhosting.top
*.z3dl1.afkhosting.top
*.z44ag.afkhosting.top
awsblogs.info
*.awsblogs.info
*.ecs-encryption.awsblogs.info
*.ecs-end-end-encryption.awsblogs.info
*.m.awsblogs.info
*.sber.awsblogs.info
*.voronezh.awsblogs.info
*.www.awsblogs.info
bkkdhtw.sbs
*.bkkdhtw.sbs
blog.tienda
*.blog.tienda
*.monumentsothebysrealty.blog.tienda
*.admin.firstenergy.it
*.api.firstenergy.it
*.backend.firstenergy.it
firstenergy.it
*.firstenergy.it
*.hostmaster.firstenergy.it
internetserviceprovider.com.au
*.internetserviceprovider.com.au
*.dddd.mmisi.org
*.mmisi.mmisi.org
mmisi.org
*.mmisi.org
*.ww38.mmisi.org
*.demo.moreearnzone.online
moreearnzone.online
*.moreearnzone.online
*.whm.moreearnzone.online
narrativ.au
*.narrativ.au
*.cn.noranook.com
*.m.noranook.com
noranook.com
*.noranook.com
*.wap.noranook.com
papakearesort.net
*.papakearesort.net
*.m.qualityreinvented.com
qualityreinvented.com
*.qualityreinvented.com
*.www.qualityreinvented.com
rentwala.online
*.rentwala.online
*.random.timdoyleartworks.com
timdoyleartworks.com
*.timdoyleartworks.com
*.hostmaster.vleedesigntheory.site
*.remote.vleedesigntheory.site
*.sitemap.vleedesigntheory.site
*.sitemaps.vleedesigntheory.site
vleedesigntheory.site
*.vleedesigntheory.site
*.gryc.yern.com
*.hekdj.yern.com
*.o.yern.com
*.w.yern.com
*.xju.yern.com
yern.com
*.yern.com
Other domains in certificate