Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=77941.loan
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 05, 2026
Valid Until
May 06, 2026
73 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
11:34:3F:90:6B:B0:61:70:FF:FC:BA:09:58:F3:58:65:8D:EB:74:A7:08:69:02:7E:A2:A6:E8:93:99:3F:87:EC
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
inexpensiveclothes.com
*.inexpensiveclothes.com
77941.loan
*.77941.loan
963jys.top
*.963jys.top
americannutssales.com
*.americannutssales.com
amulkesarkoprapak.com
*.amulkesarkoprapak.com
ancienthebrewneverdied.com
*.ancienthebrewneverdied.com
andara99top.com
*.andara99top.com
anlian268.com
*.anlian268.com
antimonopolist.com
*.antimonopolist.com
arabian.it
*.arabian.it
arbuz.top
*.arbuz.top
aset69ku.homes
*.aset69ku.homes
aset69ku.rent
*.aset69ku.rent
asnaragaronioduealid.shop
*.asnaragaronioduealid.shop
athenselberton.org
*.athenselberton.org
authenticleadershipconfidence.com
*.authenticleadershipconfidence.com
authenticleadershipimpact.com
*.authenticleadershipimpact.com
autogrammion.com
*.autogrammion.com
b999y798.vip
*.b999y798.vip
badafish.com
*.badafish.com
bu4koa6.top
*.bu4koa6.top
columbian.it
*.columbian.it
e-kayit.net
*.e-kayit.net
hotelditalia.it
*.hotelditalia.it
ht19ht19qe.com
*.ht19ht19qe.com
idqq88link13.xyz
*.idqq88link13.xyz
ifj35m.co
*.ifj35m.co
infcities.com
*.infcities.com
infeokver.info
*.infeokver.info
metha.it
*.metha.it
portacinture.it
*.portacinture.it
reachingredditbusinessads.com
*.reachingredditbusinessads.com
savinlox.shop
*.savinlox.shop
sawza.net
*.sawza.net
saxonsolutions.com
*.saxonsolutions.com
sembdesar.com
*.sembdesar.com
sembleraw.com
*.sembleraw.com
shamelessvillains.com
*.shamelessvillains.com
simpson-judgetalent.org
*.simpson-judgetalent.org
sjmart.com
*.sjmart.com
sleeping-quality-id.click
*.sleeping-quality-id.click
slygga.in
*.slygga.in
smartenterprisemag.com
*.smartenterprisemag.com
soloperlui.it
*.soloperlui.it
thinkaboutit.it
*.thinkaboutit.it
Other domains in certificate