Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=instareplica.com
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
May 29, 2026
Valid Until
August 27, 2026
74 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8F:69:A4:92:FD:DC:28:C0:F0:C1:3A:CB:EC:88:CB:36:01:40:43:74:F2:57:47:47:22:5D:93:63:C1:23:0E:E1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
bbet.digital
*.bbet.digital
*.staging.bbet.digital
*.1.100grammchik-8krasnodar.store
100grammchik-8krasnodar.store
*.100grammchik-8krasnodar.store
*.2.100grammchik-8krasnodar.store
*.3.100grammchik-8krasnodar.store
*.4.100grammchik-8krasnodar.store
*.5.100grammchik-8krasnodar.store
*.6.100grammchik-8krasnodar.store
*.7.100grammchik-8krasnodar.store
5168886.com
*.5168886.com
*.ww38.5168886.com
alflen.com
*.alflen.com
assistenza.it
*.assistenza.it
*.previgen.assistenza.it
*.rai.assistenza.it
*.subito.assistenza.it
beeswax.it
*.beeswax.it
bonanzaox.vip
*.bonanzaox.vip
bubbaccino.com
*.bubbaccino.com
*.admin.instareplica.com
*.backend.instareplica.com
*.demo.instareplica.com
instareplica.com
*.instareplica.com
*.www.instareplica.com
*.admin.jovina.online
*.erqo0kusz9.jovina.online
jovina.online
*.jovina.online
*.login.jovina.online
*.msbecjsm8bhuj20n.jovina.online
*.santalurdeecjsm8bhuj20n.jovina.online
*.ww25.jovina.online
*.comune.khalijiexpress.store
khalijiexpress.store
*.khalijiexpress.store
*.ww25.khalijiexpress.store
metodo4as.com.br
*.metodo4as.com.br
nercessian.com
*.nercessian.com
online-mental-test-right-now.sbs
*.online-mental-test-right-now.sbs
*.shopwww.online-mental-test-right-now.sbs
*.gurufian.penaguruntt.com
*.gurufianbimbel.penaguruntt.com
penaguruntt.com
*.penaguruntt.com
*.api.rewardsource.space
rewardsource.space
*.rewardsource.space
slotsp.vip
*.slotsp.vip
*.ww38.slotsp.vip
*.lwesoes.ss8i099xmd.com
*.sandbox.ss8i099xmd.com
ss8i099xmd.com
*.ss8i099xmd.com
*.api.testbankair.com
*.hostmaster.testbankair.com
*.rds1.testbankair.com
testbankair.com
*.testbankair.com
vpbetgo88.com
*.vpbetgo88.com
*.ww25.vpbetgo88.com
*.ww38.vpbetgo88.com
webcams-world.com
*.webcams-world.com
xn--b2vs2v.com
*.xn--b2vs2v.com
xn--c31a362c.com
*.xn--c31a362c.com
xn--c5z.com
*.xn--c5z.com
xn--cet893i.com
*.xn--cet893i.com
xn--m1xx47f.com
*.xn--m1xx47f.com
xn--mb0ao5u.com
*.xn--mb0ao5u.com
Other domains in certificate