Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=enigmatickets.co
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 13, 2026
Valid Until
May 14, 2026
87 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CC:B1:8E:17:A7:60:7C:CC:CB:AD:7E:B3:B6:F2:AB:D7:4D:C3:0F:69:0F:55:71:AA:5E:07:F9:85:B0:8A:D1:7A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
avalocomputer.co
*.avalocomputer.co
123moviesdp.com
*.123moviesdp.com
*.test.123moviesdp.com
acspca.org
*.acspca.org
*.mobile.acspca.org
agristek.co
*.agristek.co
airliebeachapartment.com.au
*.airliebeachapartment.com.au
*.admin.allpro.it
allpro.it
*.allpro.it
*.dev.allpro.it
angola.com.au
*.angola.com.au
armystreamhd.xyz
*.armystreamhd.xyz
atbluemarkets.co
*.atbluemarkets.co
camillelittlecookie.co
*.camillelittlecookie.co
casino-vulcan-online.click
*.casino-vulcan-online.click
*.hhs.casino-vulcan-online.click
christianblanks.co
*.christianblanks.co
cloud-delega.co
*.cloud-delega.co
contarianthinking.co
*.contarianthinking.co
decasasde.online
*.decasasde.online
designandforms.com
*.designandforms.com
*.mail.designandforms.com
eidentity.us
*.eidentity.us
enigmatickets.co
*.enigmatickets.co
essexroofcleaning.com
*.essexroofcleaning.com
*.webdisk.essexroofcleaning.com
frioalpes.co
*.frioalpes.co
goldenmarketcapital.com
*.goldenmarketcapital.com
high-paying-weight-loss-trials799904.icu
*.high-paying-weight-loss-trials799904.icu
hotelsmackay.com.au
*.hotelsmackay.com.au
ijnngt.org
*.ijnngt.org
*.feudssjo.innovidea.net
innovidea.net
*.innovidea.net
*.kusso1o8.innovidea.net
jerkmetube.com
*.jerkmetube.com
*.swww.jerkmetube.com
*.api.lieweary.com
*.backup.lieweary.com
*.cloud.lieweary.com
lieweary.com
*.lieweary.com
*.link.lieweary.com
mondiairelay-sms.info
*.mondiairelay-sms.info
*.ak.oneegrou.net
oneegrou.net
*.oneegrou.net
stackersandforklifts872800.icu
*.stackersandforklifts872800.icu
superhero-movie.com
*.superhero-movie.com
*.ww82.superhero-movie.com
*.heinl.volni.cz
*.shop.volni.cz
volni.cz
*.volni.cz
*.ww1.volni.cz
*.ww17.volni.cz
*.ww38.volni.cz
webapp4ypu.eu
*.webapp4ypu.eu
*.ww38.webapp4ypu.eu
wwwblookboost.com
*.wwwblookboost.com
Other domains in certificate