Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=waygroud.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 12, 2026
Valid Until
August 10, 2026
62 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
55:7C:48:B5:36:FC:F9:08:BF:89:BA:81:D7:F9:EB:C6:DE:A5:5E:9C:43:62:09:03:91:BD:55:D4:0C:6E:20:C0
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
firstenergy.it
*.firstenergy.it
*.admin.firstenergy.it
*.api.firstenergy.it
*.hostmaster.firstenergy.it
48863.blog
*.48863.blog
aknamundiastrology.com
*.aknamundiastrology.com
*.backend.aknamundiastrology.com
*.m.aknamundiastrology.com
*.staging.aknamundiastrology.com
*.www.aknamundiastrology.com
alpacacollections.vip
*.alpacacollections.vip
caffecialdeonline.it
*.caffecialdeonline.it
*.com.caffecialdeonline.it
*.cpcontacts.caffecialdeonline.it
*.dashs.caffecialdeonline.it
*.webdisk.caffecialdeonline.it
*.webmail.caffecialdeonline.it
*.www.caffecialdeonline.it
cloud247.co
*.cloud247.co
*.www.cloud247.co
*.admin.fonpichig.com
*.agent.fonpichig.com
*.backend.fonpichig.com
*.demo.fonpichig.com
fonpichig.com
*.fonpichig.com
*.ww1.fonpichig.com
*.ww7.fonpichig.com
*.www.fonpichig.com
*.gues-072188.guesstoday.com
guesstoday.com
*.guesstoday.com
*.random.guesstoday.com
kickflip.live
*.kickflip.live
*.ww38.kickflip.live
mcginleysbar.com
*.mcginleysbar.com
paintaugmented.click
*.paintaugmented.click
pastoral.cn
*.pastoral.cn
petrochemicals.in
*.petrochemicals.in
*.southcentralus.petrochemicals.in
*.api.safemobile.it
*.backend.safemobile.it
*.dash.safemobile.it
*.demo.safemobile.it
safemobile.it
*.safemobile.it
*.superset.safemobile.it
*.2a1fbdab-af2b-4978-863f-f8c62838698e.watermelongelato.com
*.3284fc4b-716c-4ea4-86f8-180d5d6fef90.watermelongelato.com
*.33cffde3-e5bb-4e9f-941b-40fa9fb3d265.watermelongelato.com
*.5635a942-85d8-4aff-bfea-40a4d4700db2.watermelongelato.com
*.a.watermelongelato.com
*.api.watermelongelato.com
*.assets.watermelongelato.com
*.bb58a339-372d-429f-89bb-31529948799c.watermelongelato.com
*.cpcontacts.watermelongelato.com
*.dev.watermelongelato.com
*.docs.watermelongelato.com
*.fr.watermelongelato.com
*.ftp.watermelongelato.com
*.gate.watermelongelato.com
*.members.watermelongelato.com
*.new.watermelongelato.com
*.partner.watermelongelato.com
*.remote.watermelongelato.com
*.root.watermelongelato.com
*.staging.watermelongelato.com
*.test.watermelongelato.com
*.vpn.watermelongelato.com
watermelongelato.com
*.watermelongelato.com
*.ww25.watermelongelato.com
*.www.watermelongelato.com
*.www2.watermelongelato.com
waygroud.com
*.waygroud.com
*.ww25.waygroud.com
yourholiday.com.au
*.yourholiday.com.au
Other domains in certificate