Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=doo4u.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 25, 2026
Valid Until
July 24, 2026
49 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8E:EF:1D:66:42:96:85:1F:20:41:56:35:81:A3:D5:EE:05:A0:95:CE:07:41:BD:08:33:07:2A:EC:19:FD:AE:00
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
bolted.it
*.bolted.it
*.app.bolted.it
*.demo.bolted.it
bitphlare.biz
*.bitphlare.biz
*.ww25.bitphlare.biz
carrenotrans.com
*.carrenotrans.com
*.cpcontacts.carrenotrans.com
*.insight.carrenotrans.com
*.morabanc.carrenotrans.com
*.webdisk.carrenotrans.com
cystaltown.cc
*.cystaltown.cc
*.ww25.cystaltown.cc
*.5b95625c-da7e-47cc-80b2-4d12f6ed8475.doo4u.com
*.dev.doo4u.com
doo4u.com
*.doo4u.com
*.toonmix.doo4u.com
*.www.doo4u.com
duniawin77id.com
*.duniawin77id.com
*.online.duniawin77id.com
*.r53.duniawin77id.com
*.sitemaps.duniawin77id.com
*.www.duniawin77id.com
gczx.cc
*.gczx.cc
*.wap.gczx.cc
japan-jr-pass.com
*.japan-jr-pass.com
*.app.loveastrologer.in
*.hostmaster.loveastrologer.in
loveastrologer.in
*.loveastrologer.in
*.qa.loveastrologer.in
*.sitemap.loveastrologer.in
*.ark.lpswebtechnology.com
*.cloud.lpswebtechnology.com
*.collegeerp.lpswebtechnology.com
*.excelconvent.lpswebtechnology.com
lpswebtechnology.com
*.lpswebtechnology.com
*.opd.lpswebtechnology.com
*.pgcs.lpswebtechnology.com
*.pos.lpswebtechnology.com
*.schoolerp.lpswebtechnology.com
*.server.lpswebtechnology.com
*.stamp.lpswebtechnology.com
*.www.lpswebtechnology.com
*.xeeedc.lpswebtechnology.com
*.doh1.ozon.coach
ozon.coach
*.ozon.coach
*.resolver.ozon.coach
*.api.presentparadise.club
*.app.presentparadise.club
*.demo.presentparadise.club
presentparadise.club
*.presentparadise.club
*.www.presentparadise.club
purevetpharma.net
*.purevetpharma.net
*.32.rojadirect.click
rojadirect.click
*.rojadirect.click
*.ww.rojadirect.click
*.admin.rw49.com
*.otc.rw49.com
*.probiller.rw49.com
rw49.com
*.rw49.com
*.m.snackset.com
snackset.com
*.snackset.com
*.mx.sympresa.com
sympresa.com
*.sympresa.com
*.mail.taipingsentralmall.com
taipingsentralmall.com
*.taipingsentralmall.com
*.a.transmultimedia.com
*.iot.transmultimedia.com
transmultimedia.com
*.transmultimedia.com
*.ww38.wwwmagnicustomersurvey.com
wwwmagnicustomersurvey.com
*.wwwmagnicustomersurvey.com
Other domains in certificate