Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=389dc.icu
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 24, 2026
Valid Until
July 23, 2026
69 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
77:85:71:11:53:A3:63:82:41:D6:B3:21:B2:A3:E7:92:E1:E6:7C:55:E8:2A:3E:3C:9A:B1:28:1B:63:D8:E4:2F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
allenpark.net
*.allenpark.net
*.app.allenpark.net
*.clientesvpn.allenpark.net
*.console.allenpark.net
*.dashs.allenpark.net
*.internal.allenpark.net
*.mail.allenpark.net
*.mobileconnect.allenpark.net
*.remote.allenpark.net
*.report.allenpark.net
*.superset.allenpark.net
*.vpn2.allenpark.net
*.vpnssl.allenpark.net
*.zimbra.allenpark.net
389dc.icu
*.389dc.icu
etasks.biz
*.etasks.biz
felicitylacasa.cfd
*.felicitylacasa.cfd
forgrowtuth.cfd
*.forgrowtuth.cfd
*.302873cc-670e-4e19-a87e-0aa3c653c311.marketrecaps.com
*.7fa8c2e0-c3f0-45cf-bb37-cbd06b5cddaa.marketrecaps.com
*.account.marketrecaps.com
*.api.marketrecaps.com
*.apigee.marketrecaps.com
*.appdynamics.marketrecaps.com
*.appsheet.marketrecaps.com
*.autoconfig.marketrecaps.com
*.autodiscover.marketrecaps.com
*.backup.marketrecaps.com
*.board.marketrecaps.com
*.byte.marketrecaps.com
*.client.marketrecaps.com
*.convox.marketrecaps.com
*.cpanel.marketrecaps.com
*.cpcalendars.marketrecaps.com
*.cpcontacts.marketrecaps.com
*.cvlfaportal.marketrecaps.com
*.dashboard.marketrecaps.com
*.dcd0e7c5-caed-4ded-af55-05e47bfc966e.marketrecaps.com
*.demo.marketrecaps.com
*.dev.marketrecaps.com
*.docs.marketrecaps.com
*.ec55f03b-2e10-42b7-897f-591b6af8a557.marketrecaps.com
*.epxflwebmail.marketrecaps.com
*.external.marketrecaps.com
*.intranet.marketrecaps.com
*.lxlnvmail.marketrecaps.com
*.m.marketrecaps.com
*.mail.marketrecaps.com
*.mailer.marketrecaps.com
*.marketing.marketrecaps.com
marketrecaps.com
*.marketrecaps.com
*.members.marketrecaps.com
*.my.marketrecaps.com
*.portal.marketrecaps.com
*.qa.marketrecaps.com
*.rvnkxm.marketrecaps.com
*.secure.marketrecaps.com
*.share.marketrecaps.com
*.staging.marketrecaps.com
*.testing.marketrecaps.com
*.webmail.marketrecaps.com
*.www.marketrecaps.com
*.wwww.marketrecaps.com
*.zlrlkwebmail.marketrecaps.com
*.a.urbanelbechoes.com
*.admin.urbanelbechoes.com
*.box.urbanelbechoes.com
*.chat.urbanelbechoes.com
*.correo.urbanelbechoes.com
*.cpcontacts.urbanelbechoes.com
*.dev.urbanelbechoes.com
*.info.urbanelbechoes.com
*.mail3.urbanelbechoes.com
*.out.urbanelbechoes.com
*.remote.urbanelbechoes.com
*.sandbox.urbanelbechoes.com
*.site.urbanelbechoes.com
urbanelbechoes.com
*.urbanelbechoes.com
*.webdisk.urbanelbechoes.com
*.ww1.urbanelbechoes.com
*.ww7.urbanelbechoes.com
*.www.urbanelbechoes.com
Other domains in certificate