Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=repo.ltd
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
January 08, 2026
Valid Until
April 08, 2026
42 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
07:62:F1:35:EB:27:A7:3F:AD:23:FB:C6:3A:B1:99:11:33:14:BF:B5:18:52:95:DD:0B:99:AF:A8:A5:6B:63:37
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
chartet.net
*.chartet.net
*.random.chartet.net
*.sq.chartet.net
*.ww25.chartet.net
*.ww38.chartet.net
allaskaair.com
*.allaskaair.com
*.bot.allaskaair.com
*.random.allaskaair.com
*.staging.allaskaair.com
*.superset.allaskaair.com
*.test.allaskaair.com
athens.au
*.athens.au
barbatimaodealagoas.online
*.barbatimaodealagoas.online
*.ww25.barbatimaodealagoas.online
*.api.bookmymarks.xyz
*.bce3c03a-65cf-41f4-abf4-2cb5053a895d.bookmymarks.xyz
bookmymarks.xyz
*.bookmymarks.xyz
buyads.com.au
*.buyads.com.au
*.comune.buyads.com.au
*.mx.buyads.com.au
*.staging.buyads.com.au
*.ww25.buyads.com.au
ewu.in
*.ewu.in
*.iiitd.ewu.in
*.xrmap.ewu.in
*.ffffffffffff.fishery.com.au
fishery.com.au
*.fishery.com.au
*.grsinfo.fishery.com.au
*.im.fishery.com.au
*.ww25.fishery.com.au
*.dev.greatwomen.com
*.email.greatwomen.com
greatwomen.com
*.greatwomen.com
*.images.greatwomen.com
*.search.greatwomen.com
janecarter.com
*.janecarter.com
*.ww.janecarter.com
movejunkrestoration.com
*.movejunkrestoration.com
mychatt.org
*.mychatt.org
nutritionnews24x7.com
*.nutritionnews24x7.com
pasubang.com
*.pasubang.com
prostatetreatment926842.icu
*.prostatetreatment926842.icu
*.dev.redbull888.bet
redbull888.bet
*.redbull888.bet
*.personio.repo.ltd
repo.ltd
*.repo.ltd
*.and.roses.live
*.guns.roses.live
*.n.roses.live
*.random.roses.live
*.remote.roses.live
roses.live
*.roses.live
*.ww38.roses.live
*.www.roses.live
*.inbetriebsetzung.swgeldernnetz.de
swgeldernnetz.de
*.swgeldernnetz.de
texturelabs.co
*.texturelabs.co
*.ww38.texturelabs.co
*.deals.uplyft.io
*.dev.uplyft.io
*.openideal.uplyft.io
uplyft.io
*.uplyft.io
*.ww38.uplyft.io
*.www.uplyft.io
*.crm.wilsonfeed.com
*.lime.wilsonfeed.com
wilsonfeed.com
*.wilsonfeed.com
*.ww25.wilsonfeed.com
Other domains in certificate