Open
Cached
·
3h ago
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=bookofskull.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 04, 2026
Valid Until
May 05, 2026
72 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
DE:9A:97:A8:F5:C3:93:CC:F1:64:7E:63:37:B9:E6:07:A4:8E:38:BC:AB:0A:85:9A:20:CF:CD:7D:D0:68:74:73
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
callsystem.it
*.callsystem.it
bookofskull.com
*.bookofskull.com
boostfitnessenergy.xyz
*.boostfitnessenergy.xyz
boxingsportslive.com
*.boxingsportslive.com
bybcw.net
*.bybcw.net
c2490.net
*.c2490.net
cameravideo.it
*.cameravideo.it
campusgame.it
*.campusgame.it
cannonschoolcollegecounseling.com
*.cannonschoolcollegecounseling.com
capillavirtualdeladivinamisericordia.com
*.capillavirtualdeladivinamisericordia.com
captomucil.com
*.captomucil.com
carbonmineral.com
*.carbonmineral.com
carpenters-jobs-agent.buzz
*.carpenters-jobs-agent.buzz
casafeliz.co
*.casafeliz.co
chamberofcommons.com
*.chamberofcommons.com
chifferi.it
*.chifferi.it
flie.it
*.flie.it
*.pop3.flie.it
*.khkcsvpn.nenglan.com
nenglan.com
*.nenglan.com
*.pop.skaandnmonioasdatuphub.cyou
skaandnmonioasdatuphub.cyou
*.skaandnmonioasdatuphub.cyou
wgchf.net
*.wgchf.net
wggxdqcpkk.com
*.wggxdqcpkk.com
whimsicalweddingsevents.beauty
*.whimsicalweddingsevents.beauty
wickedgoodlighting.com
*.wickedgoodlighting.com
wikislot.biz
*.wikislot.biz
winix.it
*.winix.it
wirelesscharger.it
*.wirelesscharger.it
wixi.it
*.wixi.it
wkbhcyv.cyou
*.wkbhcyv.cyou
worldbusiness.it
*.worldbusiness.it
worldcup.it
*.worldcup.it
wweyp.net
*.wweyp.net
xgppxokq.com
*.xgppxokq.com
xn--b0sr7x.com
*.xn--b0sr7x.com
ygdw7985.sbs
*.ygdw7985.sbs
yoshz.pro
*.yoshz.pro
youhire.it
*.youhire.it
yourhair.it
*.yourhair.it
yyy383.top
*.yyy383.top
yyy886.top
*.yyy886.top
z74kz1.shop
*.z74kz1.shop
zete.it
*.zete.it
zolyjnrf.xyz
*.zolyjnrf.xyz
zrh.it
*.zrh.it
Other domains in certificate