Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=mybootsontheground.com
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
May 31, 2026
Valid Until
August 29, 2026
74 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
42:E8:7D:1E:A1:E9:44:59:7F:0F:B2:E8:78:70:B4:9A:13:BB:DF:23:93:6A:8B:8B:4A:81:B6:6A:45:14:12:DF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
pot4000.com
*.pot4000.com
alternativeprofitablegate.com
*.alternativeprofitablegate.com
*.ww25.alternativeprofitablegate.com
amandasainz.com
*.amandasainz.com
*.autodiscover.amandasainz.com
*.cpcontacts.amandasainz.com
*.m.amandasainz.com
*.mail.amandasainz.com
amqm.xyz
*.amqm.xyz
*.test1.amqm.xyz
*.test2.amqm.xyz
artlab.cc
*.artlab.cc
*.dev.artlab.cc
*.transfer.artlab.cc
cuoshe.com
*.cuoshe.com
*.dboicoae7j.dcf365.cn
dcf365.cn
*.dcf365.cn
*.gmlp.dcf365.cn
*.agent-06.fastfox.vip
*.api.fastfox.vip
fastfox.vip
*.fastfox.vip
*.admin.freightquot.com
freightquot.com
*.freightquot.com
*.admin.mybootsontheground.com
*.api.mybootsontheground.com
*.assets.mybootsontheground.com
*.blog.mybootsontheground.com
*.cloud.mybootsontheground.com
*.demo.mybootsontheground.com
*.dev.mybootsontheground.com
*.e1bfad20-a4d2-431e-9dde-a17f05cda7c2.mybootsontheground.com
mybootsontheground.com
*.mybootsontheground.com
*.new.mybootsontheground.com
*.rd.mybootsontheground.com
*.rds.mybootsontheground.com
*.rdweb.mybootsontheground.com
*.remote.mybootsontheground.com
*.ssl.mybootsontheground.com
*.test.mybootsontheground.com
*.zuzzwwwww.mybootsontheground.com
*.mail.nationalist.in
nationalist.in
*.nationalist.in
*.hostmaster.nearpizza.com
nearpizza.com
*.nearpizza.com
*.admin.nieuw.com
*.id.nieuw.com
*.koffie.nieuw.com
nieuw.com
*.nieuw.com
*.nieuw.nieuw.com
*.praktijkderegenboog.nieuw.com
*.woonbedrijf.nieuw.com
*.ns1.odotmovingahead.com
odotmovingahead.com
*.odotmovingahead.com
*.www.odotmovingahead.com
poupatempodigital.onl
*.poupatempodigital.onl
pouwe.gdn
*.pouwe.gdn
pouye.loan
*.pouye.loan
psychologyqueen.com
*.psychologyqueen.com
refungible.xyz
*.refungible.xyz
rwlu.com
*.rwlu.com
*.mx.talkofsudan.com
talkofsudan.com
*.talkofsudan.com
*.explorer.wechatkorea.shop
*.kr.wechatkorea.shop
*.random.wechatkorea.shop
wechatkorea.shop
*.wechatkorea.shop
*.ww25.wechatkorea.shop
Other domains in certificate