Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=doge-finance.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 16, 2026
Valid Until
August 14, 2026
70 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
02:DA:5E:4C:B6:4D:D7:02:E2:9C:F2:3B:27:A3:E8:76:AD:D1:CB:08:96:AB:2C:AD:0B:F7:8F:20:C9:6D:4F:6D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
studiowebsitebuilder.com
*.studiowebsitebuilder.com
*.api.studiowebsitebuilder.com
*.app.studiowebsitebuilder.com
*.dev.studiowebsitebuilder.com
*.docs.studiowebsitebuilder.com
*.external.studiowebsitebuilder.com
*.intranet.studiowebsitebuilder.com
*.my.studiowebsitebuilder.com
*.portal.studiowebsitebuilder.com
*.public.studiowebsitebuilder.com
*.share.studiowebsitebuilder.com
*.sharepoint.studiowebsitebuilder.com
*.admin.beforewedding.it
beforewedding.it
*.beforewedding.it
*.dev.beforewedding.it
*.hostmaster.beforewedding.it
booish.com
*.booish.com
colonneinternational.com
*.colonneinternational.com
*.ftp.colonneinternational.com
*.m.colonneinternational.com
*.sip.colonneinternational.com
*.www.colonneinternational.com
cooking-classy.com
*.cooking-classy.com
*.random.cooking-classy.com
*.ww16.cooking-classy.com
ddhca.qpon
*.ddhca.qpon
dfys.org
*.dfys.org
*.hostmaster.dfys.org
*.random.dfys.org
*.secureaccess.dfys.org
*.web.dfys.org
*.analytic.doge-finance.com
*.analytics.doge-finance.com
*.api.doge-finance.com
*.arcgisprinttest.doge-finance.com
*.assets.doge-finance.com
*.avil.doge-finance.com
*.digidrum.doge-finance.com
doge-finance.com
*.doge-finance.com
*.flowiseai.doge-finance.com
*.fortunecard.doge-finance.com
*.glio.doge-finance.com
*.gotomun.doge-finance.com
*.hotfix.doge-finance.com
*.payback.doge-finance.com
*.portuguese.doge-finance.com
*.prod.doge-finance.com
*.seo.doge-finance.com
*.systab.doge-finance.com
*.ww38.doge-finance.com
*.xyimageloopdemo.doge-finance.com
*.zmml.doge-finance.com
*.zxjkt2.doge-finance.com
*.zxscanlib.doge-finance.com
*.api.ffmovies.watch
ffmovies.watch
*.ffmovies.watch
*.login.ffmovies.watch
*.panel.ffmovies.watch
herrschers.com
*.herrschers.com
playsshop.com
*.playsshop.com
producerpowerhour.com
*.producerpowerhour.com
*.ww25.producerpowerhour.com
*.ww38.producerpowerhour.com
proliablility.com
*.proliablility.com
*.ww11.proliablility.com
*.ww16.proliablility.com
*.ww38.proliablility.com
ufamadamv1.com
*.ufamadamv1.com
*.9b6b0bd1-81be-499e-ad20-e5e4644873db.waterparks.digital
*.api.waterparks.digital
*.csivzwxwnlj.waterparks.digital
*.qiynywxwnlj.waterparks.digital
waterparks.digital
*.waterparks.digital
*.wxwnlj.waterparks.digital
Other domains in certificate