Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=aliks.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 20, 2026
Valid Until
May 21, 2026
84 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CC:A9:1D:0B:8A:5D:12:C0:93:16:62:8D:00:84:FD:10:BC:83:86:A8:3D:07:1D:5A:A8:1A:3C:9B:B4:76:6C:6E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
aliks.com
*.aliks.com
*.ww16.aliks.com
*.32df78ca-f8af-42eb-8214-335fd8873e21.biletimnerede.net
*.api.biletimnerede.net
*.app.biletimnerede.net
*.assets.biletimnerede.net
*.b185d908-c6e7-4b62-ad91-d90d197042d0.biletimnerede.net
biletimnerede.net
*.biletimnerede.net
*.dnzfndemo.biletimnerede.net
*.hostmaster.biletimnerede.net
*.mta-sts.biletimnerede.net
*.test.biletimnerede.net
*.vpn.biletimnerede.net
*.webmail.biletimnerede.net
*.webvpn.biletimnerede.net
*.72c98aac-0dc3-4c5a-b3bc-7131c7cbf674.designerland.net
*.admin.designerland.net
*.api.designerland.net
*.app.designerland.net
*.assets.designerland.net
*.ciscoasa.designerland.net
*.cpanel.designerland.net
*.demo.designerland.net
designerland.net
*.designerland.net
*.dev.designerland.net
*.docs.designerland.net
*.external.designerland.net
*.ftp.designerland.net
*.hostmaster.designerland.net
*.ihypmsharepoint.designerland.net
*.intranet.designerland.net
*.m.designerland.net
*.mail.designerland.net
*.ohhfestaging.designerland.net
*.portal.designerland.net
*.share.designerland.net
*.sharepoint.designerland.net
*.sitemap.designerland.net
*.sitemaps.designerland.net
*.teamserver.designerland.net
*.test.designerland.net
*.webdisk.designerland.net
*.webmail.designerland.net
*.whm.designerland.net
jvporn.com
*.jvporn.com
*.random.jvporn.com
*.abcd123.lmzx.net
*.digita.lmzx.net
lmzx.net
*.lmzx.net
*.log.lmzx.net
*.remote.lmzx.net
*.sqc.lmzx.net
*.vpn.lmzx.net
*.wap.lmzx.net
*.webmail.lmzx.net
*.wildcard.lmzx.net
*.ww.lmzx.net
*.www.lmzx.net
*.xxxyyyzz.lmzx.net
*.zj.lmzx.net
*.and70deg.respectively.it
*.dashboards.respectively.it
*.dev.respectively.it
*.forecast.respectively.it
*.metrics.respectively.it
*.p.respectively.it
respectively.it
*.respectively.it
*.demo.ukbusinesslawyer.com
*.hostmaster.ukbusinesslawyer.com
ukbusinesslawyer.com
*.ukbusinesslawyer.com
*.ycnmtmembers.ukbusinesslawyer.com
*.admin.zoechip.click
*.api.zoechip.click
*.dev.zoechip.click
*.hostmaster.zoechip.click
*.satiuassets.zoechip.click
*.test.zoechip.click
*.webdisk.zoechip.click
*.werkenbij.zoechip.click
*.whm.zoechip.click
*.www.zoechip.click
zoechip.click
*.zoechip.click
Other domains in certificate