Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=akungantuk.xyz
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 04, 2026
Valid Until
August 02, 2026
87 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
77:AC:FC:01:B2:37:19:A0:C6:13:AF:59:EA:2F:B1:37:7A:B0:E9:FD:33:C2:3F:8C:1A:0B:12:60:72:BD:0F:7E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
benhome.com
*.benhome.com
akungantuk.xyz
*.akungantuk.xyz
*.m.akungantuk.xyz
*.ww25.akungantuk.xyz
*.ww38.akungantuk.xyz
dfaazrxihm.com
*.dfaazrxihm.com
*.data-viz.don.bio
don.bio
*.don.bio
*.stat.don.bio
*.api.downlyst.com
downlyst.com
*.downlyst.com
*.mail.downlyst.com
*.rds.downlyst.com
*.test.downlyst.com
*.uat.downlyst.com
*.a.fi-yemen.com
*.admin.fi-yemen.com
*.box.fi-yemen.com
*.cms.fi-yemen.com
*.dan.fi-yemen.com
*.en.fi-yemen.com
fi-yemen.com
*.fi-yemen.com
*.imap.fi-yemen.com
*.laravel.fi-yemen.com
*.magento.fi-yemen.com
*.mail.fi-yemen.com
*.mail01.fi-yemen.com
*.mail02.fi-yemen.com
*.mobile.fi-yemen.com
*.mta-sts.fi-yemen.com
*.mx0.fi-yemen.com
*.mx2.fi-yemen.com
*.new.fi-yemen.com
*.owa.fi-yemen.com
*.pay.fi-yemen.com
*.post.fi-yemen.com
*.random.fi-yemen.com
*.root.fi-yemen.com
*.stg.fi-yemen.com
*.support.fi-yemen.com
*.tbgfua.fi-yemen.com
*.vpn.fi-yemen.com
*.webdisk.fi-yemen.com
*.ww1.fi-yemen.com
*.ww17.fi-yemen.com
goodclue.com
*.goodclue.com
*.32.kinoxto.site
kinoxto.site
*.kinoxto.site
lojashoppe.site
*.lojashoppe.site
*.ww38.lojashoppe.site
ponr73xea.cc
*.ponr73xea.cc
*.ww25.ponr73xea.cc
*.b929f9af-a57f-4040-991c-715a80c0844c.shipping.tokyo
shipping.tokyo
*.shipping.tokyo
sydneycarremovalist.com.au
*.sydneycarremovalist.com.au
*.api.trae.it
*.backend.trae.it
trae.it
*.trae.it
*.autodiscover.vast.asia
*.cp.vast.asia
*.cpcalendars.vast.asia
*.ebmail.vast.asia
*.m.vast.asia
*.ndom.vast.asia
*.pop.vast.asia
*.random.vast.asia
*.remote.vast.asia
vast.asia
*.vast.asia
*.webdisk.vast.asia
*.webmail.vast.asia
*.www.vast.asia
*.raghu.webdunia.tech
*.sarv.webdunia.tech
*.srav.webdunia.tech
webdunia.tech
*.webdunia.tech
Other domains in certificate