Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=fairyfinish.com
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
June 01, 2026
Valid Until
August 30, 2026
68 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
08:0B:BC:2D:21:B1:A5:FF:0D:FA:86:64:1F:E8:DB:87:BA:7D:22:A7:A7:45:23:CA:0B:3A:B1:25:43:07:0B:2E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
credibanks.com
*.credibanks.com
apiscene.com
*.apiscene.com
argyllwestern.co.uk
*.argyllwestern.co.uk
*.cpanel.argyllwestern.co.uk
*.ww25.argyllwestern.co.uk
assurancewirreless.com
*.assurancewirreless.com
*.w.assurancewirreless.com
co-desk.com
*.co-desk.com
*.dev-api.co-desk.com
fairyfinish.com
*.fairyfinish.com
focusedtravelventures.xyz
*.focusedtravelventures.xyz
glafidsyaaesthetic.com
*.glafidsyaaesthetic.com
greyscaleinsights.com
*.greyscaleinsights.com
hgsee.my
*.hgsee.my
legendquester442.info
*.legendquester442.info
loyalgardengurus.xyz
*.loyalgardengurus.xyz
meoaf.town
*.meoaf.town
mnabc.top
*.mnabc.top
modernhomefactory.com
*.modernhomefactory.com
mysteryodyssey364.top
*.mysteryodyssey364.top
nmzvyx.town
*.nmzvyx.town
numenorai.com
*.numenorai.com
nuptialnetherlands.beauty
*.nuptialnetherlands.beauty
nuptialspectacle.beauty
*.nuptialspectacle.beauty
nvefvm.com
*.nvefvm.com
nvhergkeg8e5sghrg.top
*.nvhergkeg8e5sghrg.top
nxx5.cc
*.nxx5.cc
nycdashes.com
*.nycdashes.com
nyytha.town
*.nyytha.town
ocbat.my
*.ocbat.my
ocvub.work
*.ocvub.work
officialpayments.co
*.officialpayments.co
ofqrz.work
*.ofqrz.work
ondauhztmlfecjv.cc
*.ondauhztmlfecjv.cc
opzgf.work
*.opzgf.work
orobet777.bet
*.orobet777.bet
oslo-copenhagen-coach-tour-package-no.sbs
*.oslo-copenhagen-coach-tour-package-no.sbs
peppertime.tech
*.peppertime.tech
poogle.xyz
*.poogle.xyz
purevitalityn.info
*.purevitalityn.info
qlkzkb.town
*.qlkzkb.town
reelestateai.net
*.reelestateai.net
revielservice.com
*.revielservice.com
*.sitemap.revielservice.com
*.www.revielservice.com
rtplord88lons.xyz
*.rtplord88lons.xyz
zerodata.xyz
*.zerodata.xyz
zgmyou.town
*.zgmyou.town
Other domains in certificate