Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=perfectstore.xyz
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 02, 2026
Valid Until
July 31, 2026
89 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9A:5C:D6:B3:5B:FA:CE:C3:2B:58:EB:40:7D:B7:EA:AB:47:B0:18:82:E4:7B:73:E6:54:B0:33:77:E7:E4:70:14
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
66 domains
bestringtones.mobi
*.bestringtones.mobi
*.m.bestringtones.mobi
55gaga.bet
*.55gaga.bet
avischool.click
*.avischool.click
bosy777.com
*.bosy777.com
bronzemeal.site
*.bronzemeal.site
*.oviawona.bronzemeal.site
childcarecenter.it
*.childcarecenter.it
earthgrazers.com
*.earthgrazers.com
*.ww25.earthgrazers.com
face2414.xyz
*.face2414.xyz
face9437.xyz
*.face9437.xyz
inexplicabledesigns.com
*.inexplicabledesigns.com
*.random.inexplicabledesigns.com
*.ww38.inexplicabledesigns.com
kalonjitv.com
*.kalonjitv.com
*.jobs.koroger.com
koroger.com
*.koroger.com
*.moodle.koroger.com
*.travel.koroger.com
*.web.koroger.com
*.ww.koroger.com
*.ww10.koroger.com
*.ww25.koroger.com
*.ww31.koroger.com
legionprint.com
*.legionprint.com
mystorelogsmarket.com
*.mystorelogsmarket.com
paesix.info
*.paesix.info
*.mail.perfectstore.xyz
*.ns1.perfectstore.xyz
*.ns2.perfectstore.xyz
perfectstore.xyz
*.perfectstore.xyz
quozizz.info
*.quozizz.info
quualtrics.info
*.quualtrics.info
*.fr.syphrena.eu
syphrena.eu
*.syphrena.eu
tetto.pro
*.tetto.pro
*.mail.thecontentedsoleeyemouth.co.uk
thecontentedsoleeyemouth.co.uk
*.thecontentedsoleeyemouth.co.uk
*.ww25.thecontentedsoleeyemouth.co.uk
*.staging.themove.it
themove.it
*.themove.it
xn--bililgflge-heb.de
*.xn--bililgflge-heb.de
Other domains in certificate