Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=ezshiftknob.net
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 14, 2026
Valid Until
August 12, 2026
78 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
1A:1C:A9:46:C5:3D:12:70:4C:1C:ED:2B:3B:88:15:10:F8:E4:96:4C:41:43:2A:32:38:B0:19:72:E8:DE:BD:C0
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
bitdotdev.com
*.bitdotdev.com
*.58f878d4-da43-44fa-ac8a-a53cf7daf8c5.bitdotdev.com
*.api.bitdotdev.com
*.assets.bitdotdev.com
*.clvqnxayxwrpuafr.bitdotdev.com
*.hostmaster.bitdotdev.com
*.temp.bitdotdev.com
*.user.bitdotdev.com
*.wmdcyassets.bitdotdev.com
*.xayxwrpuafr.bitdotdev.com
14777bb.tv
*.14777bb.tv
*.nlww17.14777bb.tv
722bet.bet
*.722bet.bet
*.random.722bet.bet
bntip.work
*.bntip.work
*.comwww.bntip.work
*.ai.describe.pro
describe.pro
*.describe.pro
*.hostmaster.describe.pro
*.to.describe.pro
*.6ytzo5.ezshiftknob.net
*.api.ezshiftknob.net
*.app.ezshiftknob.net
*.demo.ezshiftknob.net
*.dev.ezshiftknob.net
ezshiftknob.net
*.ezshiftknob.net
*.www.ezshiftknob.net
*.xwdhfm.ezshiftknob.net
*.a101-com-tr.haftaninkampanyalari.online
haftaninkampanyalari.online
*.haftaninkampanyalari.online
*.ww38.haftaninkampanyalari.online
*.analytic.luoghiditalia.com
*.api.luoghiditalia.com
*.dashboard.luoghiditalia.com
luoghiditalia.com
*.luoghiditalia.com
*.ww42.luoghiditalia.com
*.12d4xbib15p3.luxuryshots.click
*.aljp6brhyd7j.luxuryshots.click
*.api.luxuryshots.click
*.app.luxuryshots.click
*.bcttxup94fc1.luxuryshots.click
*.dev.luxuryshots.click
*.f0990aca-046d-4cb1-870c-93cf907d5de3.luxuryshots.click
*.hostmaster.luxuryshots.click
luxuryshots.click
*.luxuryshots.click
*.mail.luxuryshots.click
*.sbohpicx.luxuryshots.click
*.shop.luxuryshots.click
*.t7u17imrcsok.luxuryshots.click
*.www.luxuryshots.click
oemtractorparts.com
*.oemtractorparts.com
*.owa.oemtractorparts.com
*.sandbox.oemtractorparts.com
*.silver.oemtractorparts.com
*.api.paii.art
*.dev1superset.paii.art
*.dsjgzmvv3jcdbssi.paii.art
*.m.paii.art
*.new.paii.art
paii.art
*.paii.art
*.wildcard.paii.art
*.comwww.procleaners.sbs
procleaners.sbs
*.procleaners.sbs
torrentqq289.com
*.torrentqq289.com
*.ww3.torrentqq289.com
*.api.ultrafastsmm.xyz
*.blog.ultrafastsmm.xyz
*.sbd1u.ultrafastsmm.xyz
ultrafastsmm.xyz
*.ultrafastsmm.xyz
*.xbh6h.ultrafastsmm.xyz
*.xrqcg.ultrafastsmm.xyz
*.y9zz2.ultrafastsmm.xyz
*.z3dl1.ultrafastsmm.xyz
*.pf.wocaola99.cc
wocaola99.cc
*.wocaola99.cc
Other domains in certificate