Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=festa.studio
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 13, 2026
Valid Until
April 13, 2026
49 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
37:84:30:E5:97:2F:92:D0:A8:BE:48:57:CD:F7:A8:53:6D:B2:35:96:5E:80:3E:6E:83:49:68:9C:23:CE:5F:35
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
borgapk.com
*.borgapk.com
*.n.borgapk.com
*.ww25.borgapk.com
common-power.org
*.common-power.org
*.ww25.common-power.org
config.live
*.config.live
*.context.config.live
*.hlsjs.config.live
*.magicrampage.config.live
*.random.config.live
*.tugela.config.live
*.ww25.config.live
festa.studio
*.festa.studio
*.ww25.festa.studio
justabswer.com
*.justabswer.com
*.login.justabswer.com
*.ww25.justabswer.com
*.ww38.justabswer.com
kpac24.com
*.kpac24.com
*.www.kpac24.com
laborinjurylaw.com
*.laborinjurylaw.com
*.webdisk.laborinjurylaw.com
*.ww25.laborinjurylaw.com
*.zerotoalphaliving.laborinjurylaw.com
*.0d02fec5-f6ac-42e1-82a6-127054f0f96e.luminiferous.com
*.android.luminiferous.com
*.login.luminiferous.com
luminiferous.com
*.luminiferous.com
*.money.luminiferous.com
*.pool.luminiferous.com
*.rustore.luminiferous.com
*.stats.luminiferous.com
*.tools.luminiferous.com
*.update.luminiferous.com
*.ww1.luminiferous.com
*.ww25.luminiferous.com
*.comune.manidoro.com
*.hostmaster.manidoro.com
manidoro.com
*.manidoro.com
*.nhac.manidoro.com
*.store.manidoro.com
*.webdesign.manidoro.com
*.wildcard.manidoro.com
*.ww16.manidoro.com
*.ww25.manidoro.com
*.ftp.mobilemail.email
mobilemail.email
*.mobilemail.email
*.ww25.mobilemail.email
*.www.mobilemail.email
oxas.live
*.oxas.live
*.ww25.oxas.live
*.help.pinup-azerbaycan.bet
pinup-azerbaycan.bet
*.pinup-azerbaycan.bet
*.support.pinup-azerbaycan.bet
*.cpcalendars.rojadirectatvhd.online
*.hostmaster.rojadirectatvhd.online
*.mail.rojadirectatvhd.online
rojadirectatvhd.online
*.rojadirectatvhd.online
*.uat.rojadirectatvhd.online
shinpou.com
*.shinpou.com
*.sitemap.shinpou.com
*.ww17.shinpou.com
*.ww38.shinpou.com
*.checkout.theringbox.co
theringbox.co
*.theringbox.co
*.ww25.theringbox.co
tusi.mobi
*.tusi.mobi
*.ww5.tusi.mobi
vashtyfashionline.com
*.vashtyfashionline.com
*.ww25.vashtyfashionline.com
vfwpost4075.org
*.vfwpost4075.org
*.ww25.vfwpost4075.org
Other domains in certificate