Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=14180.my
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 21, 2026
Valid Until
July 20, 2026
53 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CA:72:54:7F:16:3A:04:10:DA:DC:69:6D:FD:17:5F:F5:56:5A:6C:70:47:19:6A:45:6E:BC:0F:CF:FA:1F:E0:A0
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
botmass.info
*.botmass.info
14180.my
*.14180.my
15610.town
*.15610.town
24794.co
*.24794.co
24hrs-dentist-47050.click
*.24hrs-dentist-47050.click
26691784.vip
*.26691784.vip
49566.co
*.49566.co
606242.vip
*.606242.vip
672370.xyz
*.672370.xyz
77exch.bet
*.77exch.bet
antarvasnavideos.pro
*.antarvasnavideos.pro
blazemancer924.info
*.blazemancer924.info
bysaqu.pro
*.bysaqu.pro
careerpinnacle.xyz
*.careerpinnacle.xyz
celebratemarriages.beauty
*.celebratemarriages.beauty
ckthk.photos
*.ckthk.photos
cktrl.work
*.cktrl.work
clarisigndocs.com
*.clarisigndocs.com
clquo.reviews
*.clquo.reviews
coane.reviews
*.coane.reviews
countervair.com
*.countervair.com
cpirm.reviews
*.cpirm.reviews
dagalive88.net
*.dagalive88.net
massageinshanghai.com
*.massageinshanghai.com
minebrew.com
*.minebrew.com
mspo4-02.com
*.mspo4-02.com
ssvv0004.top
*.ssvv0004.top
ssvv0008.top
*.ssvv0008.top
ssvv0010.top
*.ssvv0010.top
sturdybuilt.pro
*.sturdybuilt.pro
venom.asia
*.venom.asia
veribilinci.org
*.veribilinci.org
verticalclinic.com
*.verticalclinic.com
vgvmfqd256.vip
*.vgvmfqd256.vip
vgwjnzz.top
*.vgwjnzz.top
vibeknots.com
*.vibeknots.com
vogueweddingdays.beauty
*.vogueweddingdays.beauty
vogute.com
*.vogute.com
vortexhubeo.com
*.vortexhubeo.com
vowplanners.beauty
*.vowplanners.beauty
voxcinemass.com
*.voxcinemass.com
vwjfw.town
*.vwjfw.town
w33bet.org
*.w33bet.org
weddinginspiredpro.beauty
*.weddinginspiredpro.beauty
windows-43302.click
*.windows-43302.click
Other domains in certificate