Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=paulfredrick.co
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 16, 2026
Valid Until
August 14, 2026
58 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C8:0C:7C:EF:01:C9:C8:5E:98:A3:30:05:98:8B:3D:44:EF:4B:19:D2:C6:C2:A7:42:90:87:23:1D:F2:6C:DB:A1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
fairo.co
*.fairo.co
*.api.fairo.co
45888.org
*.45888.org
54729.my
*.54729.my
55820.sx
*.55820.sx
5588ck.cc
*.5588ck.cc
789acc.xyz
*.789acc.xyz
apartments-near-rh2.click
*.apartments-near-rh2.click
arres.co
*.arres.co
bettilt1.io
*.bettilt1.io
bettilt2.io
*.bettilt2.io
bettilt7.io
*.bettilt7.io
bl-digital.com
*.bl-digital.com
*.abc.cosmeticdentistillinois.com
*.bbvagg653wi3bfb2.cosmeticdentistillinois.com
*.ci.cosmeticdentistillinois.com
*.cicd.cosmeticdentistillinois.com
cosmeticdentistillinois.com
*.cosmeticdentistillinois.com
*.db.cosmeticdentistillinois.com
*.ww1.cosmeticdentistillinois.com
*.ww38.cosmeticdentistillinois.com
cottoncandynearme.com
*.cottoncandynearme.com
*.app.cryptosavvysch.com
*.bot.cryptosavvysch.com
cryptosavvysch.com
*.cryptosavvysch.com
*.dev.cryptosavvysch.com
*.gitlab.cryptosavvysch.com
globalriskmonitoring.org
*.globalriskmonitoring.org
*.bb.mengliao4.xyz
*.bm.mengliao4.xyz
*.bt.mengliao4.xyz
*.bz.mengliao4.xyz
*.kb.mengliao4.xyz
*.kt.mengliao4.xyz
*.kz.mengliao4.xyz
*.mb.mengliao4.xyz
mengliao4.xyz
*.mengliao4.xyz
*.mk.mengliao4.xyz
*.mm.mengliao4.xyz
*.mt.mengliao4.xyz
*.mz.mengliao4.xyz
*.tb.mengliao4.xyz
*.tk.mengliao4.xyz
*.tt.mengliao4.xyz
*.tz.mengliao4.xyz
*.ww7.mengliao4.xyz
*.zk.mengliao4.xyz
*.zt.mengliao4.xyz
*.zz.mengliao4.xyz
nextorbithq.pro
*.nextorbithq.pro
pasadenagaragedoorrepair.cc
*.pasadenagaragedoorrepair.cc
*.emails.paulfredrick.co
paulfredrick.co
*.paulfredrick.co
rtpodin77rots.xyz
*.rtpodin77rots.xyz
tarot.asia
*.tarot.asia
tessiq.shop
*.tessiq.shop
theleithannual.com
*.theleithannual.com
therapy-for-depression.buzz
*.therapy-for-depression.buzz
uketainfo.info
*.uketainfo.info
uketaofficial.org
*.uketaofficial.org
xn--31vo76a.com
*.xn--31vo76a.com
Other domains in certificate