Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=forecastor.biz
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
January 23, 2026
Valid Until
April 23, 2026
61 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D2:1C:69:FD:99:8B:F5:A7:6B:25:95:93:B9:73:79:68:E6:98:CA:79:C5:E3:D6:C5:C5:8D:AC:CD:27:C7:8E:16
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
singingman.us
*.singingman.us
*.9d655f68-1137-4bfd-8052-8218d64adeb6.singingman.us
*.api.singingman.us
*.app.singingman.us
*.assets.singingman.us
*.dashboard.singingman.us
*.demo.singingman.us
*.dev.singingman.us
*.m.singingman.us
*.reporting.singingman.us
*.vpn.singingman.us
*.webmail.singingman.us
*.wildcard.singingman.us
*.ww1.singingman.us
*.ww25.singingman.us
*.ww3.singingman.us
adsbliss.agency
*.adsbliss.agency
*.hotfix.adsbliss.agency
*.portal.adsbliss.agency
aliso.io
*.aliso.io
*.pay.aliso.io
*.prd-bh.aliso.io
*.prd-bh1.aliso.io
anydoisanydo.online
*.anydoisanydo.online
forecastor.biz
*.forecastor.biz
*.ww17.forecastor.biz
*.directory.marineqld.com.au
*.finance.marineqld.com.au
marineqld.com.au
*.marineqld.com.au
*.www.marineqld.com.au
svscomics.net
*.svscomics.net
*.ww.svscomics.net
*.ww38.svscomics.net
*.6441056b613c32a9.sweetwatewr.com
*.emv1.sweetwatewr.com
*.hostmaster.sweetwatewr.com
*.mail.sweetwatewr.com
sweetwatewr.com
*.sweetwatewr.com
*.wildcard.sweetwatewr.com
*.analytic.torentor.co
*.pop.torentor.co
torentor.co
*.torentor.co
*.1.variantliving.us
*.a.variantliving.us
*.anime.variantliving.us
*.apk.variantliving.us
*.baby.variantliving.us
*.bathroom.variantliving.us
*.bis.variantliving.us
*.bis1.variantliving.us
*.businesscasual.variantliving.us
*.chatgpt.variantliving.us
*.decor.variantliving.us
*.gpt.variantliving.us
*.hair.variantliving.us
*.home.variantliving.us
*.insur.variantliving.us
*.insurance.variantliving.us
*.job.variantliving.us
*.kitchen.variantliving.us
*.law.variantliving.us
*.livingroom.variantliving.us
*.m.variantliving.us
*.masso.variantliving.us
*.meso.variantliving.us
*.messox.variantliving.us
*.motivation.variantliving.us
*.n.variantliving.us
*.nail.variantliving.us
*.nailsart.variantliving.us
*.nailsq.variantliving.us
*.palette.variantliving.us
*.premium.variantliving.us
*.recipes.variantliving.us
*.t.variantliving.us
*.tatto.variantliving.us
*.techno.variantliving.us
variantliving.us
*.variantliving.us
*.we.variantliving.us
Other domains in certificate