Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=dofiga.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 11, 2026
Valid Until
May 12, 2026
88 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
63:B0:B4:F6:02:91:B2:8F:A2:39:BE:FE:B2:D1:91:97:0B:38:34:34:A5:FF:32:BE:B9:C3:FF:49:7B:06:46:AB
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
galalith.com
*.galalith.com
*.api.galalith.com
*.beta.galalith.com
*.dev.galalith.com
*.mail.galalith.com
*.rustore.galalith.com
*.test.galalith.com
*.ww38.galalith.com
*.account.alianzalai.com
alianzalai.com
*.alianzalai.com
*.mail.alianzalai.com
*.old.alianzalai.com
*.pop.alianzalai.com
*.webtest.alianzalai.com
aljaliya.com
*.aljaliya.com
*.api.aljaliya.com
*.backup.aljaliya.com
*.dev.aljaliya.com
*.mail.aljaliya.com
*.sitemap.aljaliya.com
*.test.aljaliya.com
*.ww25.aljaliya.com
*.ww38.aljaliya.com
*.comune.dofiga.com
dofiga.com
*.dofiga.com
*.mx.dofiga.com
*.smtp3.dofiga.com
*.api.freekerala.com
*.dev.freekerala.com
*.forum.freekerala.com
freekerala.com
*.freekerala.com
*.mail.freekerala.com
*.test.freekerala.com
*.ww25.freekerala.com
*.www.freekerala.com
kismate.shop
*.kismate.shop
*.resolver1.kismate.shop
*.12.m88f.club
*.admin.m88f.club
*.api.m88f.club
*.ldcardsubdomaintoprocess.m88f.club
m88f.club
*.m88f.club
*.www.m88f.club
*.api.nagacuan05.net
nagacuan05.net
*.nagacuan05.net
*.api.naiai.us
naiai.us
*.naiai.us
*.api.onbet39.vip
*.dev.onbet39.vip
onbet39.vip
*.onbet39.vip
*.cdn.ren-a-car-cheap.com
ren-a-car-cheap.com
*.ren-a-car-cheap.com
*.api.snipdeal.com
*.dev.snipdeal.com
*.mail.snipdeal.com
snipdeal.com
*.snipdeal.com
*.test.snipdeal.com
*.vpn.snipdeal.com
*.ww25.snipdeal.com
torrent47.com
*.torrent47.com
*.346f560a-e3e4-4653-a4dd-ff9ab6c935b5.usaphilanthropy.com
*.api.usaphilanthropy.com
*.dashboard.usaphilanthropy.com
*.demo.usaphilanthropy.com
*.dev.usaphilanthropy.com
*.luvvzdev.usaphilanthropy.com
*.marketing.usaphilanthropy.com
*.pixels.usaphilanthropy.com
*.portail.usaphilanthropy.com
*.qa.usaphilanthropy.com
*.rds.usaphilanthropy.com
*.secure.usaphilanthropy.com
*.staging.usaphilanthropy.com
usaphilanthropy.com
*.usaphilanthropy.com
*.web.usaphilanthropy.com
*.www.usaphilanthropy.com
Other domains in certificate