Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=16039.my
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 14, 2026
Valid Until
August 12, 2026
64 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
EE:EA:70:31:4E:B3:E3:24:B4:29:59:AF:9B:9C:E6:3A:D4:C1:DC:F2:18:B0:34:CE:E4:08:E9:ED:CE:A8:E1:65
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
83 domains
xventure.tech
*.xventure.tech
*.assets.xventure.tech
*.staging.xventure.tech
*.ztjv2.xventure.tech
014415.lol
*.014415.lol
16039.my
*.16039.my
21076.co
*.21076.co
aof-foundation.org
*.aof-foundation.org
*.kuaiji.aof-foundation.org
*.old.aof-foundation.org
*.seo.aof-foundation.org
*.stg.aof-foundation.org
*.assets.avlulu309.xyz
avlulu309.xyz
*.avlulu309.xyz
*.ww25.avlulu309.xyz
*.ww38.avlulu309.xyz
candymail.uk
*.candymail.uk
*.ww25.candymail.uk
digitalism.com.br
*.digitalism.com.br
*.api.eatingdisorder-op.space
*.avito.eatingdisorder-op.space
eatingdisorder-op.space
*.eatingdisorder-op.space
*.pay.eatingdisorder-op.space
*.sber.eatingdisorder-op.space
*.superset.eatingdisorder-op.space
fabricstore.it
*.fabricstore.it
*.wwww.fabricstore.it
*.autodiscover.fetishcafe.club
fetishcafe.club
*.fetishcafe.club
*.webmail.fetishcafe.club
*.wildcard.fetishcafe.club
*.ww38.fetishcafe.club
*.dev.gameofblocks.io
gameofblocks.io
*.gameofblocks.io
indiaqp.pics
*.indiaqp.pics
jufd5bz8xj.xyz
*.jufd5bz8xj.xyz
*.nslow.jufd5bz8xj.xyz
*.ageuk.our.uk
*.cpag.our.uk
*.fourwheels.our.uk
*.gyca.our.uk
*.hawking.our.uk
*.kids.our.uk
our.uk
*.our.uk
*.hqzhcapp.pqwish.art
pqwish.art
*.pqwish.art
primaryurl.com
*.primaryurl.com
*.pop.propertytm.com
propertytm.com
*.propertytm.com
risaleara.com
*.risaleara.com
*.ww25.risaleara.com
saadjewelers.com
*.saadjewelers.com
*.9t0o53.sherpaasset.biz
*.app.sherpaasset.biz
*.assets.sherpaasset.biz
*.cdxwatest.sherpaasset.biz
*.demo.sherpaasset.biz
*.j1nv3a.sherpaasset.biz
*.p4it87.sherpaasset.biz
sherpaasset.biz
*.sherpaasset.biz
*.staging.sherpaasset.biz
*.test.sherpaasset.biz
Other domains in certificate