Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=lasvegasprivateinvestigation.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 11, 2026
Valid Until
August 09, 2026
88 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
AC:2E:8F:60:70:E5:0F:67:D6:A5:CE:0F:8A:08:5C:FA:FA:A1:7E:75:02:91:13:36:81:B1:34:74:EF:FA:FE:78
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
aqdocument.com
*.aqdocument.com
*.ns3wd0.aqdocument.com
*.api.autobiddingagent.com
*.app.autobiddingagent.com
autobiddingagent.com
*.autobiddingagent.com
*.scraper.autobiddingagent.com
*.store.autobiddingagent.com
*.acdivrlb.babelounge.co.uk
babelounge.co.uk
*.babelounge.co.uk
*.chat-development.babelounge.co.uk
*.hzvwctjb.babelounge.co.uk
*.87e5473c-ed5d-4f3d-b27e-97fa24ae8ce8.cancer.capital
*.api.cancer.capital
*.app.cancer.capital
cancer.capital
*.cancer.capital
*.dev.cancer.capital
*.docs.cancer.capital
*.external.cancer.capital
*.intranet.cancer.capital
*.members.cancer.capital
*.my.cancer.capital
*.portal.cancer.capital
*.public.cancer.capital
*.sharepoint.cancer.capital
*.test.cancer.capital
*.www.cancer.capital
*.xa272q.cancer.capital
dahlakproduction.com
*.dahlakproduction.com
*.webdisk.dahlakproduction.com
ezclipse.com
*.ezclipse.com
*.shop.ezclipse.com
glrongwu.top
*.glrongwu.top
*.jdcp.glrongwu.top
hempmary.com
*.hempmary.com
*.test.hempmary.com
*.www.hempmary.com
lasvegasprivateinvestigation.com
*.lasvegasprivateinvestigation.com
*.m.lasvegasprivateinvestigation.com
omdkg.agency
*.omdkg.agency
*.s.omdkg.agency
*.49p22t.onceuponanherb.info
*.748af155-5216-4615-af7e-a2ff9462870e.onceuponanherb.info
*.app.onceuponanherb.info
*.dev.onceuponanherb.info
onceuponanherb.info
*.onceuponanherb.info
*.staging.onceuponanherb.info
*.test.onceuponanherb.info
*.www.onceuponanherb.info
photoonchain.com
*.photoonchain.com
*.www.photoonchain.com
*.x96q2b.photoonchain.com
*.m.teulights.com
teulights.com
*.teulights.com
thebethleheminn.com
*.thebethleheminn.com
*.wildcard.thebethleheminn.com
*.admin.vaiolaptops.com
*.api.vaiolaptops.com
*.app.vaiolaptops.com
*.aq2417.vaiolaptops.com
*.assets.vaiolaptops.com
*.blog.vaiolaptops.com
*.demo.vaiolaptops.com
*.dev.vaiolaptops.com
*.mail.vaiolaptops.com
*.members.vaiolaptops.com
*.shop.vaiolaptops.com
*.staging.vaiolaptops.com
*.test.vaiolaptops.com
vaiolaptops.com
*.vaiolaptops.com
*.vpn.vaiolaptops.com
*.www.vaiolaptops.com
*.kl.yourtrademarkbff.com
yourtrademarkbff.com
*.yourtrademarkbff.com
Other domains in certificate