Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=ako.bio
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 17, 2026
Valid Until
August 15, 2026
58 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BC:71:DD:95:A4:B6:CF:6D:43:CB:21:24:ED:D2:E4:4C:A4:89:A2:0E:B2:AD:45:3A:9F:8B:72:55:39:CA:C5:37
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
ako.bio
*.ako.bio
1024caoliu.org
*.1024caoliu.org
1178yjj301.top
*.1178yjj301.top
ashentai.com
*.ashentai.com
banda-cazino-fun.xyz
*.banda-cazino-fun.xyz
betwin777.cc
*.betwin777.cc
cheapandbestmovers.company
*.cheapandbestmovers.company
copyqu.pro
*.copyqu.pro
crowdfundingmagasine.com
*.crowdfundingmagasine.com
free-live-sex-chat.com
*.free-live-sex-chat.com
freepsps.com
*.freepsps.com
gold-a.xyz
*.gold-a.xyz
macro-rebounds.org
*.macro-rebounds.org
mevius-lgo188amp.top
*.mevius-lgo188amp.top
mevius-lgo188amp2.top
*.mevius-lgo188amp2.top
mfd23.icu
*.mfd23.icu
mfgt.cc
*.mfgt.cc
mifareduox.com
*.mifareduox.com
mrappleiq.com
*.mrappleiq.com
mrsbet.net
*.mrsbet.net
mxa24hh.top
*.mxa24hh.top
napoleonofbusiness.com
*.napoleonofbusiness.com
nfhtglobe.top
*.nfhtglobe.top
okx-api.com
*.okx-api.com
ontracklearning.com
*.ontracklearning.com
oppkk.town
*.oppkk.town
pharoschat.com
*.pharoschat.com
phumadmin.com
*.phumadmin.com
pilgrims.pizza
*.pilgrims.pizza
primerogrove.com
*.primerogrove.com
pvmmpi06.org
*.pvmmpi06.org
rebuildingukraine.com
*.rebuildingukraine.com
rendaedinheiro.net
*.rendaedinheiro.net
safetyanddignityforwomen.org
*.safetyanddignityforwomen.org
se91x8.cyou
*.se91x8.cyou
skilltotech.net
*.skilltotech.net
tenca.moe
*.tenca.moe
terrafixr.sbs
*.terrafixr.sbs
topclick.top
*.topclick.top
tpmsproduction.dev
*.tpmsproduction.dev
tryavalon.com
*.tryavalon.com
untung88vision.xyz
*.untung88vision.xyz
videoondemand.in
*.videoondemand.in
visionarydreamslabel.com
*.visionarydreamslabel.com
wnbaviptips.info
*.wnbaviptips.info
Other domains in certificate