Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=8mzl4oj2k45d.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
December 03, 2025
Valid Until
March 03, 2026
35 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BF:03:E0:74:2D:4D:43:FA:E4:23:15:0C:9B:70:98:66:9B:4A:9D:FE:08:FC:FF:A1:B5:8F:45:72:73:AB:73:64
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
aun.au
*.aun.au
*.anglican.aun.au
*.asu.aun.au
*.aur-schule-l.aun.au
*.candk.aun.au
*.com.aun.au
*.edu.aun.au
*.occderm.aun.au
*.pswa.aun.au
*.yhoole.aun.au
12365.bet
*.12365.bet
*.com.12365.bet
8mzl4oj2k45d.com
*.8mzl4oj2k45d.com
dabomstew.co
*.dabomstew.co
*.pokehacks.dabomstew.co
*.backup.employeereferals.com
*.bio-rad.employeereferals.com
*.blhmxkfq.employeereferals.com
*.bridgestone.employeereferals.com
*.caluber.employeereferals.com
*.centurion.employeereferals.com
*.cpgfmlsb.employeereferals.com
*.cretex.employeereferals.com
*.cvmjiaky.employeereferals.com
*.difvanwu.employeereferals.com
*.ecdspgyi.employeereferals.com
employeereferals.com
*.employeereferals.com
*.etoxlfga.employeereferals.com
*.fcxlwjoz.employeereferals.com
*.fr.employeereferals.com
*.hzwjydxe.employeereferals.com
*.imap.employeereferals.com
*.intempdy.employeereferals.com
*.itlufeqb.employeereferals.com
*.kzhmtpqv.employeereferals.com
*.lcg-careers.employeereferals.com
*.lnhapfjq.employeereferals.com
*.lykfgrsb.employeereferals.com
*.mdfntrxy.employeereferals.com
*.nofshxik.employeereferals.com
*.notexistssnpmhquf.employeereferals.com
*.notexiststhackpgb.employeereferals.com
*.notexistsuftlwsrv.employeereferals.com
*.notexistswbvokceu.employeereferals.com
*.nymdluqs.employeereferals.com
*.ofigepry.employeereferals.com
*.oivwjsku.employeereferals.com
*.onjtwpze.employeereferals.com
*.pilotflyingj.employeereferals.com
*.pmljfdxg.employeereferals.com
*.qjeipbackup.employeereferals.com
*.qrdulckb.employeereferals.com
*.qrjxynug.employeereferals.com
*.rubxneol.employeereferals.com
*.saqxnorp.employeereferals.com
*.smtp.employeereferals.com
*.soarjyix.employeereferals.com
*.tekhnyjf.employeereferals.com
*.topwfjmn.employeereferals.com
*.ulgrbqjh.employeereferals.com
*.vtmyirqu.employeereferals.com
*.vxtlcjdf.employeereferals.com
*.wbzkhoyg.employeereferals.com
*.webdisk.employeereferals.com
*.xqocikem.employeereferals.com
*.xsidfyqh.employeereferals.com
*.xyqltojr.employeereferals.com
*.xzpghvur.employeereferals.com
*.yoglfaqw.employeereferals.com
*.zqfgawud.employeereferals.com
etna-wenden.de
*.etna-wenden.de
getrxpharmacy.com
*.getrxpharmacy.com
kc2.cc
*.kc2.cc
*.prod.kc2.cc
*.ww12.kc2.cc
*.ww25.kc2.cc
*.ww7.kc2.cc
*.ww99.kc2.cc
pelesok.com
*.pelesok.com
safe-mw.net
*.safe-mw.net
Other domains in certificate