Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=ecreeps.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 26, 2026
Valid Until
July 25, 2026
41 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7A:7A:10:94:DD:09:5B:AE:78:05:00:BE:47:F8:89:2E:3A:7C:FC:CE:D7:57:59:C6:C9:56:C4:A9:45:A5:45:AD
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
li.au
*.li.au
*.9f.li.au
*.9otlk.li.au
*.bhabi.li.au
*.blogspot.li.au
*.brf.li.au
*.ccl.li.au
*.des.li.au
*.enjuk.li.au
*.gadhi.li.au
*.hosts.li.au
*.kahi.li.au
*.kwe.li.au
*.robert.li.au
*.s.li.au
*.wilson.li.au
acbd.com.au
*.acbd.com.au
*.ww25.acbd.com.au
ak-water.com
*.ak-water.com
*.wwww.ak-water.com
atlantapublicschool.com
*.atlantapublicschool.com
*.old.atlantapublicschool.com
*.superset.atlantapublicschool.com
*.test.atlantapublicschool.com
*.ww38.atlantapublicschool.com
bestcryptosavings.com
*.bestcryptosavings.com
*.wildcard.bestcryptosavings.com
*.ww25.bestcryptosavings.com
commsave.com.au
*.commsave.com.au
*.random.commsave.com.au
*.dev.ecreeps.com
ecreeps.com
*.ecreeps.com
*.nqbjtsage.ecreeps.com
*.sage.ecreeps.com
*.temp.ecreeps.com
*.thesco.ecreeps.com
*.thescop.ecreeps.com
*.wildcard.ecreeps.com
*.www.ecreeps.com
*.exwebmail.had.com.au
had.com.au
*.had.com.au
*.random.had.com.au
*.du03gf.jobzi.live
jobzi.live
*.jobzi.live
*.ftp.koi-livescore.com
koi-livescore.com
*.koi-livescore.com
*.webmail.koi-livescore.com
*.whm.koi-livescore.com
ocetft.com
*.ocetft.com
*.shop.ocetft.com
*.www.ocetft.com
*.galleries.oral-amber.com
*.geo.oral-amber.com
oral-amber.com
*.oral-amber.com
*.webmail.oral-amber.com
*.www.oral-amber.com
pupyy.com
*.pupyy.com
*.ww25.pupyy.com
*.ww38.pupyy.com
*.api.ximena.it
*.app.ximena.it
*.backend.ximena.it
*.dev.ximena.it
*.staging.ximena.it
ximena.it
*.ximena.it
*.39a99f8d-4713-4f94-ae08-40b713e66a8a.xl060.cc
*.api.xl060.cc
*.lyncdiscover.xl060.cc
*.mail.xl060.cc
*.stage.xl060.cc
*.staging.xl060.cc
xl060.cc
*.xl060.cc
*.m.xn--rmsq21n.com
xn--rmsq21n.com
*.xn--rmsq21n.com
Other domains in certificate