Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=mallmax.shop
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 11, 2026
Valid Until
July 10, 2026
61 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C5:CD:C4:B3:45:4A:65:B1:FD:14:53:E5:0C:69:98:67:B0:D8:AC:8E:8B:40:DD:9C:00:27:18:78:4A:85:A6:33
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
camexpress.com
*.camexpress.com
*.edu.camexpress.com
*.mail2.camexpress.com
*.ww25.camexpress.com
*.ww38.camexpress.com
careme-protestant.org
*.careme-protestant.org
covoiturage-grand-montauban.com
*.covoiturage-grand-montauban.com
*.app.fullshot.it
*.demo.fullshot.it
fullshot.it
*.fullshot.it
*.relay.fullshot.it
*.www.fullshot.it
*.4d32cde8-eeef-4a6f-9e59-10822877840a.mallmax.shop
*.admin.mallmax.shop
*.api.mallmax.shop
*.app.mallmax.shop
*.assets.mallmax.shop
*.backup.mallmax.shop
*.cnnjhapi.mallmax.shop
*.demo.mallmax.shop
*.dev.mallmax.shop
*.emv1.mallmax.shop
*.hostmaster.mallmax.shop
*.mail.mallmax.shop
mallmax.shop
*.mallmax.shop
*.mxedgdemo.mallmax.shop
*.rdp.mallmax.shop
*.sitemap.mallmax.shop
*.sitemaps.mallmax.shop
*.staging.mallmax.shop
*.test.mallmax.shop
*.uat.mallmax.shop
*.www.mallmax.shop
*.correu.mobiletracking.in
mobiletracking.in
*.mobiletracking.in
*.http.mshaa.org
mshaa.org
*.mshaa.org
*.posta.mshaa.org
*.wew.mshaa.org
*.ww38.mshaa.org
*.rustore.spark-helix-misty.art
spark-helix-misty.art
*.spark-helix-misty.art
*.hostmaster.thefutureday.com
thefutureday.com
*.thefutureday.com
*.4bba8b9a-3d20-488e-a462-6170baff7535.thotdesign.services
*.api.thotdesign.services
*.app.thotdesign.services
*.assets.thotdesign.services
*.b86f5339-8449-4840-acaa-5e13bb24341b.thotdesign.services
*.backup.thotdesign.services
*.demo.thotdesign.services
*.dev.thotdesign.services
*.hostmaster.thotdesign.services
*.rustore.thotdesign.services
*.staging.thotdesign.services
*.test.thotdesign.services
thotdesign.services
*.thotdesign.services
*.uat.thotdesign.services
*.www.thotdesign.services
*.ygyvcapp.thotdesign.services
*.admin.wooreview.org
*.api.wooreview.org
*.app.wooreview.org
*.assets.wooreview.org
*.blog.wooreview.org
*.demo.wooreview.org
*.dev.wooreview.org
*.hostmaster.wooreview.org
*.shop.wooreview.org
*.test.wooreview.org
wooreview.org
*.wooreview.org
*.i.wwm78940usbs74zd89wyjn.com
*.ww16.wwm78940usbs74zd89wyjn.com
wwm78940usbs74zd89wyjn.com
*.wwm78940usbs74zd89wyjn.com
*.www.xn--8nry06brjs.com
xn--8nry06brjs.com
*.xn--8nry06brjs.com
*.zhanzuodeyisi.xn--8nry06brjs.com
Other domains in certificate