Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=startwinkle99zone.shop
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 16, 2026
Valid Until
August 14, 2026
69 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F6:86:E4:16:F5:4F:BF:4B:55:0D:0B:75:DB:A7:69:06:67:EF:E1:37:3D:BB:28:B5:08:D2:75:52:D4:00:6F:E6
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
86 domains
aluminarte.com
*.aluminarte.com
698247.top
*.698247.top
72216.xyz
*.72216.xyz
76777b.club
*.76777b.club
77hjeu.cc
*.77hjeu.cc
798632.world
*.798632.world
86059.loan
*.86059.loan
946446.cc
*.946446.cc
a48265039.top
*.a48265039.top
a48437539.top
*.a48437539.top
a48821950.top
*.a48821950.top
altaviatransporteyturismo.com
*.altaviatransporteyturismo.com
babyboya.com
*.babyboya.com
*.co.babyboya.com
*.smmortgage.babyboya.com
*.vps.babyboya.com
bombone.com
*.bombone.com
dbfkm.town
*.dbfkm.town
dental-implants-k5.click
*.dental-implants-k5.click
findcatalysematrixcloud.top
*.findcatalysematrixcloud.top
jp3fzpyp27.world
*.jp3fzpyp27.world
*.admin.jpmorhan.com
*.api.jpmorhan.com
*.app.jpmorhan.com
*.chasepayments.jpmorhan.com
*.dw-uat-na.jpmorhan.com
jpmorhan.com
*.jpmorhan.com
*.kf.jpmorhan.com
*.portal.jpmorhan.com
*.retirementlink.jpmorhan.com
*.ww38.jpmorhan.com
*.www.jpmorhan.com
mamapilatesbyroberta.com
*.mamapilatesbyroberta.com
nostraproxy.com
*.nostraproxy.com
palmdesertgaragedoorsrepair.com
*.palmdesertgaragedoorsrepair.com
primevacationvalue.live
*.primevacationvalue.live
skyrocketsales.com
*.skyrocketsales.com
soaio.cn
*.soaio.cn
*.apps.softchocolateslices.com
*.random.softchocolateslices.com
softchocolateslices.com
*.softchocolateslices.com
spenceragentcontacthub.com
*.spenceragentcontacthub.com
*.mail.startwinkle99zone.shop
startwinkle99zone.shop
*.startwinkle99zone.shop
superwin854.info
*.superwin854.info
tire-offers.sbs
*.tire-offers.sbs
trade-apps.sbs
*.trade-apps.sbs
ukuleleu.com
*.ukuleleu.com
unifyadhd.com
*.unifyadhd.com
unisex.one
*.unisex.one
want-want-dishwashing-jobs-workersneeded222.sbs
*.want-want-dishwashing-jobs-workersneeded222.sbs
Other domains in certificate