Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=2220066a5.shop
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 19, 2026
Valid Until
August 17, 2026
81 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
35:8D:D8:D5:51:BC:16:7F:78:AF:92:57:D7:B9:D4:36:C4:9E:9A:6E:9D:DD:12:93:EB:C4:25:C8:38:DF:60:5F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
bitgyeol.com
*.bitgyeol.com
*.galileo.bitgyeol.com
*.host7.bitgyeol.com
*.kaliningrad.bitgyeol.com
*.m.bitgyeol.com
*.papa.bitgyeol.com
*.reporter.bitgyeol.com
*.rest.bitgyeol.com
*.tor.bitgyeol.com
*.volga.bitgyeol.com
*.webvpn.bitgyeol.com
2220066a5.shop
*.2220066a5.shop
*.com.2220066a5.shop
bettercloud.co
*.bettercloud.co
*.remote.bettercloud.co
*.sitemap.bettercloud.co
*.sitemaps.bettercloud.co
*.api.clearaxis.org
*.app.clearaxis.org
clearaxis.org
*.clearaxis.org
*.demo.clearaxis.org
*.hostmaster.clearaxis.org
*.staging.clearaxis.org
*.6e16ef06-c014-4ee0-8fb4-d96861ccb0a7.nordic-media.com
*.m.nordic-media.com
nordic-media.com
*.nordic-media.com
*.www.nordic-media.com
*.admin.omnichannelxr.com
*.app.omnichannelxr.com
*.dev.omnichannelxr.com
*.hostmaster.omnichannelxr.com
*.mail03.omnichannelxr.com
omnichannelxr.com
*.omnichannelxr.com
*.www.omnichannelxr.com
*.8x0ffh.onbet.casa
*.admin.onbet.casa
*.app.onbet.casa
*.autodiscover.onbet.casa
*.box.onbet.casa
*.clldzconnect.onbet.casa
*.cockpit.onbet.casa
*.connect.onbet.casa
*.dev.onbet.casa
*.dev1redash.onbet.casa
*.forum.onbet.casa
*.intel.onbet.casa
*.m.onbet.casa
*.new.onbet.casa
onbet.casa
*.onbet.casa
*.redash.onbet.casa
*.sitemap.onbet.casa
*.sitemaps.onbet.casa
*.vdi.onbet.casa
*.www3.onbet.casa
*.api.roritorious.info
*.app.roritorious.info
*.d8w12v.roritorious.info
*.dev.roritorious.info
roritorious.info
*.roritorious.info
*.www.roritorious.info
*.27d774d6-1033-4f57-8fae-0e9ac70b8acc.xn--betco541-wkb.com
*.68e9b567-fe94-42e9-9212-ec5ea892c1ab.xn--betco541-wkb.com
*.admin.xn--betco541-wkb.com
*.app.xn--betco541-wkb.com
*.assets.xn--betco541-wkb.com
*.backup.xn--betco541-wkb.com
*.com.xn--betco541-wkb.com
*.czsvte.xn--betco541-wkb.com
*.demo.xn--betco541-wkb.com
*.dev.xn--betco541-wkb.com
*.jqpexbackup.xn--betco541-wkb.com
*.m.xn--betco541-wkb.com
*.remote.xn--betco541-wkb.com
*.sqfocczsvte.xn--betco541-wkb.com
*.staging.xn--betco541-wkb.com
*.test.xn--betco541-wkb.com
*.www.xn--betco541-wkb.com
xn--betco541-wkb.com
*.xn--betco541-wkb.com
ymshipin.cn
*.ymshipin.cn
Other domains in certificate