Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=442football.shop
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 11, 2026
Valid Until
August 09, 2026
55 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A6:16:69:23:C8:65:86:EA:34:41:3A:73:69:A9:12:0E:33:AC:26:30:BF:86:47:9F:40:F1:F1:5E:12:02:FA:26
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
aspggn.com
*.aspggn.com
442football.shop
*.442football.shop
*.ww38.442football.shop
allbestdomains.online
*.allbestdomains.online
*.bmail.allbestdomains.online
*.cpanel.allbestdomains.online
*.formation.allbestdomains.online
*.ftp.allbestdomains.online
*.hm.allbestdomains.online
*.mail.allbestdomains.online
*.map.allbestdomains.online
*.mautic.allbestdomains.online
*.sitemap.allbestdomains.online
*.webmail.allbestdomains.online
*.whm.allbestdomains.online
colis-time.fr
*.colis-time.fr
dallasmobilemassage.com
*.dallasmobilemassage.com
*.autodiscover.forleasepla.net
*.cpanel.forleasepla.net
*.cpcalendars.forleasepla.net
*.cpcontacts.forleasepla.net
forleasepla.net
*.forleasepla.net
*.webdisk.forleasepla.net
*.ww38.forleasepla.net
*.www.forleasepla.net
gaziantepgundem.com
*.gaziantepgundem.com
*.hostmaster.gaziantepgundem.com
hssabati.com
*.hssabati.com
*.ww1.hssabati.com
landwatch.com.au
*.landwatch.com.au
mistery.io
*.mistery.io
*.api.natiionallbank.online
*.cpcalendars.natiionallbank.online
*.cpcontacts.natiionallbank.online
*.mail.natiionallbank.online
natiionallbank.online
*.natiionallbank.online
*.portal.natiionallbank.online
*.webdisk.natiionallbank.online
*.webmail.natiionallbank.online
*.www.natiionallbank.online
*.gateway.noshortsale.com
*.hostmaster.noshortsale.com
*.m.noshortsale.com
noshortsale.com
*.noshortsale.com
*.sitemaps.noshortsale.com
*.ufa.noshortsale.com
*.ww1.noshortsale.com
*.ww11.noshortsale.com
*.ww16.noshortsale.com
*.ww17.noshortsale.com
*.ww25.noshortsale.com
*.ww38.noshortsale.com
*.ww5.noshortsale.com
peteqmillar.com
*.peteqmillar.com
*.comune.pisco888.xyz
*.mailin.pisco888.xyz
pisco888.xyz
*.pisco888.xyz
*.wildcard.pisco888.xyz
*.ww25.pisco888.xyz
*.www.pisco888.xyz
pluslive.studio
*.pluslive.studio
pondfishandchipsandkebab.com
*.pondfishandchipsandkebab.com
*.755c688c-6415-44b8-80d7-1fc9087127ac.token2049.monster
*.app.token2049.monster
*.crfmauwntdbxs.token2049.monster
token2049.monster
*.token2049.monster
*.uwntdbxs.token2049.monster
*.www.token2049.monster
*.server.xtubefun.com
*.staging.xtubefun.com
*.ww38.xtubefun.com
xtubefun.com
*.xtubefun.com
Other domains in certificate