Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=strawpage.co
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 18, 2026
Valid Until
August 16, 2026
73 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
06:BC:54:C1:B4:D1:72:E0:97:E9:28:86:09:40:26:68:97:8D:1E:2E:7F:2F:57:71:7A:58:7C:52:58:AB:21:08
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
86 domains
spaciouseros.com
*.spaciouseros.com
*.api.spaciouseros.com
*.app.spaciouseros.com
*.backup.spaciouseros.com
*.members.spaciouseros.com
*.uat.spaciouseros.com
18comic.cool
*.18comic.cool
*.abcd123.18comic.cool
*.cdn-msp.18comic.cool
*.comichat933965441www.18comic.cool
*.coolwww.18comic.cool
*.http.18comic.cool
*.https.18comic.cool
*.m.18comic.cool
*.owww.18comic.cool
*.test.18comic.cool
*.ww01.18comic.cool
*.ww12.18comic.cool
*.ww17.18comic.cool
*.ww7.18comic.cool
24smm.com
*.24smm.com
bluecrossms.org
*.bluecrossms.org
bme.life
*.bme.life
kitchenservicecentre.com
*.kitchenservicecentre.com
*.blog.lovily.com
*.job.lovily.com
*.joomla.lovily.com
lovily.com
*.lovily.com
*.marketing.lovily.com
*.nsk.lovily.com
*.p.lovily.com
*.random.lovily.com
*.sales.lovily.com
*.work.lovily.com
moonhub.io
*.moonhub.io
n4.vc
*.n4.vc
*.03489y7985029370976047388897654-id924.oliviaandmohassin.com
*.cpcalendars.oliviaandmohassin.com
oliviaandmohassin.com
*.oliviaandmohassin.com
*.demo.outbackgear.com.au
outbackgear.com.au
*.outbackgear.com.au
*.ww25.outbackgear.com.au
*.ww38.outbackgear.com.au
paginapubblicitaria.com
*.paginapubblicitaria.com
*.ww42.paginapubblicitaria.com
*.airspeedalive.strawpage.co
*.onetruthprevails.strawpage.co
*.puppetsballad.strawpage.co
strawpage.co
*.strawpage.co
*.32.syncflow.sbs
syncflow.sbs
*.syncflow.sbs
*.external.thacmacconggiao.art
*.intranet.thacmacconggiao.art
*.my.thacmacconggiao.art
*.sharepoint.thacmacconggiao.art
thacmacconggiao.art
*.thacmacconggiao.art
*.www.thacmacconggiao.art
*.4858e981-029e-43a1-861e-7d37aa0c7de4.wbkt.com
*.m.wbkt.com
*.sn.wbkt.com
*.tk.wbkt.com
wbkt.com
*.wbkt.com
*.ww16.wbkt.com
*.ww17.wbkt.com
*.ww25.wbkt.com
*.zr.wbkt.com
womenfreetime.com
*.womenfreetime.com
*.ww25.womenfreetime.com
*.ww38.womenfreetime.com
Other domains in certificate