Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=geneo.pro
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 17, 2026
Valid Until
August 15, 2026
83 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8A:20:59:FE:C9:9E:31:19:68:F3:DB:27:06:B2:AA:C4:01:B9:46:61:69:53:61:9F:01:6E:8B:B6:B2:BB:B8:EE
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
ignitelift.co
*.ignitelift.co
*.access.ignitelift.co
*.accounts.ignitelift.co
*.admin.ignitelift.co
*.airbnb.ignitelift.co
*.alemtat.ignitelift.co
*.alfabank.ignitelift.co
*.api.ignitelift.co
*.ardshinbank.ignitelift.co
*.aviasales.ignitelift.co
*.azerpost.ignitelift.co
*.blog.ignitelift.co
*.blogs.ignitelift.co
*.busfor.ignitelift.co
*.cian.ignitelift.co
*.clients.ignitelift.co
*.cp.ignitelift.co
*.development.ignitelift.co
*.dhl.ignitelift.co
*.extvpn.ignitelift.co
*.firewall.ignitelift.co
*.forums.ignitelift.co
*.ftp.ignitelift.co
*.globbing.ignitelift.co
*.groups.ignitelift.co
*.haypost.ignitelift.co
*.megamarket.ignitelift.co
*.ozon.ignitelift.co
archidesignlab.com
*.archidesignlab.com
*.mx.archidesignlab.com
*.admin.creditchecker.in
creditchecker.in
*.creditchecker.in
*.staging.creditchecker.in
geneo.pro
*.geneo.pro
*.ww38.geneo.pro
*.app.onayarabota.com
onayarabota.com
*.onayarabota.com
*.staging.onayarabota.com
*.yd3dn9.onayarabota.com
*.a.onchainpulse.info
*.admin.onchainpulse.info
*.dev.onchainpulse.info
onchainpulse.info
*.onchainpulse.info
*.staging.onchainpulse.info
*.www.onchainpulse.info
*.birbank.paintperformances.digital
*.cart.paintperformances.digital
*.globbing.paintperformances.digital
*.haypost.paintperformances.digital
*.mailex.paintperformances.digital
*.media.paintperformances.digital
*.megamarket.paintperformances.digital
*.mx01.paintperformances.digital
*.ns.paintperformances.digital
paintperformances.digital
*.paintperformances.digital
*.petscar.paintperformances.digital
*.ponyexpress.paintperformances.digital
*.paxm.paxmexpress.com
*.paxme.paxmexpress.com
paxmexpress.com
*.paxmexpress.com
*.staging.paxmexpress.com
*.hostmaster.shrtr.co
*.mail.shrtr.co
*.random.shrtr.co
shrtr.co
*.shrtr.co
*.ww25.shrtr.co
*.ww38.shrtr.co
*.www.shrtr.co
*.backend.sv88.beauty
*.dev.sv88.beauty
*.m.sv88.beauty
*.poc.sv88.beauty
*.staging.sv88.beauty
sv88.beauty
*.sv88.beauty
*.admin.xspp.cc
*.docs.xspp.cc
*.m.xspp.cc
xspp.cc
*.xspp.cc
Other domains in certificate