Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=secretpdf.org
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
June 04, 2026
Valid Until
September 02, 2026
81 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
94:D8:C2:54:47:2E:C9:FA:09:A8:9B:A3:3E:84:7D:9E:C2:E8:2D:22:68:1D:67:63:47:47:CB:3B:59:43:94:81
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
secretpdf.org
*.secretpdf.org
*.admin.secretpdf.org
*.api-dev.secretpdf.org
*.app.secretpdf.org
*.auto.secretpdf.org
*.bfqde2023llsplde12qd27qdl.secretpdf.org
*.buyer-api.secretpdf.org
*.cesia-api.secretpdf.org
*.cloud.secretpdf.org
*.collaborate.secretpdf.org
*.common-api.secretpdf.org
*.cpanel.secretpdf.org
*.dev.secretpdf.org
*.erp.secretpdf.org
*.gateway.secretpdf.org
*.git.secretpdf.org
*.js.secretpdf.org
*.m.secretpdf.org
*.mail.secretpdf.org
*.mall.secretpdf.org
*.news.secretpdf.org
*.pay.secretpdf.org
*.pdf.secretpdf.org
*.portal.secretpdf.org
*.postback.secretpdf.org
*.qa.secretpdf.org
*.saas.secretpdf.org
*.server.secretpdf.org
*.services.secretpdf.org
*.shop.secretpdf.org
*.spring.secretpdf.org
*.springboot.secretpdf.org
*.staging.secretpdf.org
*.storage.secretpdf.org
*.user.secretpdf.org
*.web.secretpdf.org
*.webdisk.secretpdf.org
*.widget.secretpdf.org
*.wiki.secretpdf.org
*.work.secretpdf.org
*.ws.secretpdf.org
*.ww1.secretpdf.org
*.www.secretpdf.org
*.wx.secretpdf.org
*.xcx.secretpdf.org
*.api.axiim.trade
axiim.trade
*.axiim.trade
*.www.axiim.trade
*.cloud.hiseh.com
*.febee.hiseh.com
hiseh.com
*.hiseh.com
*.mail.hiseh.com
*.rd.hiseh.com
*.rds.hiseh.com
*.rdweb.hiseh.com
*.remote.hiseh.com
*.demo.lakesideinnwavessalon.com
*.dev.lakesideinnwavessalon.com
lakesideinnwavessalon.com
*.lakesideinnwavessalon.com
*.m.lakesideinnwavessalon.com
*.magento.lakesideinnwavessalon.com
*.new.lakesideinnwavessalon.com
*.old.lakesideinnwavessalon.com
*.s1.lakesideinnwavessalon.com
*.shop.lakesideinnwavessalon.com
*.staging.lakesideinnwavessalon.com
*.store.lakesideinnwavessalon.com
*.test.lakesideinnwavessalon.com
*.wildcard.lakesideinnwavessalon.com
*.api.operation47.com
*.app.operation47.com
*.autoconfig.operation47.com
*.autodiscover.operation47.com
*.demo.operation47.com
*.ensemble-holzhackwww.operation47.com
*.evo.operation47.com
*.ftp.operation47.com
*.localhost.operation47.com
*.m.operation47.com
*.mail.operation47.com
operation47.com
*.operation47.com
*.random.operation47.com
*.sitemap.operation47.com
*.staging.operation47.com
*.ww25.operation47.com
Other domains in certificate