Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=justdemo.app
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 29, 2026
Valid Until
July 28, 2026
78 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
10:49:88:58:11:2E:D2:FC:53:B1:38:05:47:83:5F:EB:C3:87:39:A1:E7:50:56:A5:4D:71:8E:80:C2:C4:34:73
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
bxwlsj.com
*.bxwlsj.com
*.647758d1.bxwlsj.com
*.85ef0963.bxwlsj.com
*.m.bxwlsj.com
1boom.bet
*.1boom.bet
*.cpcontacts.goco.in
*.deluxe.goco.in
goco.in
*.goco.in
*.m.goco.in
*.admin.iswore.com
*.administration.iswore.com
*.api.iswore.com
*.argo.iswore.com
*.backend.iswore.com
*.backup.iswore.com
*.beta.iswore.com
*.blog.iswore.com
*.chart.iswore.com
*.crm.iswore.com
*.dashboard.iswore.com
*.demo.iswore.com
*.dev.iswore.com
*.forum.iswore.com
*.forums.iswore.com
*.help.iswore.com
*.home.iswore.com
*.hostmaster.iswore.com
*.insights.iswore.com
iswore.com
*.iswore.com
*.kubeflow-pipelines.iswore.com
*.lax1.iswore.com
*.m.iswore.com
*.mobile.iswore.com
*.new.iswore.com
*.news.iswore.com
*.old.iswore.com
*.partner.iswore.com
*.prod.iswore.com
*.remote.iswore.com
*.staging.iswore.com
*.store.iswore.com
*.superset-beta.iswore.com
*.superset.iswore.com
*.support.iswore.com
*.temp.iswore.com
*.tickets.iswore.com
*.user.iswore.com
*.vpn.iswore.com
*.wap.iswore.com
*.web.iswore.com
*.wiki.iswore.com
*.ww2.iswore.com
*.ww25.iswore.com
*.ww38.iswore.com
*.2ef11fe3-093b-481c-94e6-b032921dc0f8.justdemo.app
*.607be913-e060-4ce1-92b0-8718662b2ce1.justdemo.app
*.686ed969-7f02-4172-98c8-e10f4ff7e90f.justdemo.app
*.app.justdemo.app
*.backup.justdemo.app
*.dev.justdemo.app
*.frontend.justdemo.app
justdemo.app
*.justdemo.app
*.myweb.justdemo.app
*.originserver.justdemo.app
*.owncloud.justdemo.app
*.pacman.justdemo.app
*.staging.justdemo.app
*.uat.justdemo.app
*.xc.justdemo.app
redesports.bet
*.redesports.bet
*.com.searchlofts.com
*.dev.searchlofts.com
*.ns1.searchlofts.com
*.primary.searchlofts.com
searchlofts.com
*.searchlofts.com
*.webmail.searchlofts.com
*.api.wincasino-login.bet
*.dev.wincasino-login.bet
*.members.wincasino-login.bet
*.test.wincasino-login.bet
wincasino-login.bet
*.wincasino-login.bet
*.www.wincasino-login.bet
Other domains in certificate