Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=nofx.work
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
June 15, 2026
Valid Until
September 13, 2026
89 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C1:43:0B:D9:61:CF:66:F1:2E:88:02:4E:0E:47:73:99:55:0E:44:6E:52:D5:2B:20:92:D8:A9:A7:07:6E:B6:DD
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
nnets.com
*.nnets.com
*.china.nnets.com
*.cpanel.nnets.com
*.demo.nnets.com
*.newsite.nnets.com
*.ondeleted.nnets.com
*.preprod.nnets.com
*.prod.nnets.com
*.superset.nnets.com
*.users.nnets.com
*.ww25.nnets.com
a6nfk.mom
*.a6nfk.mom
*.dev.a6nfk.mom
boatbuilding.xyz
*.boatbuilding.xyz
*.www.boatbuilding.xyz
*.atlas.congentco.com
congentco.com
*.congentco.com
*.demark.congentco.com
*.ecogent.congentco.com
*.ns1.congentco.com
*.ns2.congentco.com
*.sys.congentco.com
container-company-486490285.click
*.container-company-486490285.click
*.prod.container-company-486490285.click
cuevvana.biz
*.cuevvana.biz
*.hotfix.cuevvana.biz
*.sandbox.cuevvana.biz
*.26afe74-28cb-4f69-be5c-4a9e8745194b.kapten33a.site
*.7tifir0b2k.kapten33a.site
*.admin.kapten33a.site
*.aging.kapten33a.site
*.app.kapten33a.site
*.assets.kapten33a.site
*.demo.kapten33a.site
*.djajqdev.kapten33a.site
*.e26afe74-28cb-4f69-be5c-4a9e8745194b.kapten33a.site
*.fflsmdashboard.kapten33a.site
*.hostmaster.kapten33a.site
*.jjvwqmarketing.kapten33a.site
kapten33a.site
*.kapten33a.site
*.kpbjgweb.kapten33a.site
*.kya7uvedm2.kapten33a.site
*.mailer.kapten33a.site
*.reporting.kapten33a.site
*.secure.kapten33a.site
*.staging.kapten33a.site
*.stg.kapten33a.site
*.syqubvwh.kapten33a.site
*.test.kapten33a.site
*.vdr6pg091h.kapten33a.site
*.zfpo921hlz.kapten33a.site
nofx.work
*.nofx.work
*.report.nofx.work
*.sdk.nofx.work
*.team.nofx.work
*.dawnfoods.provantonline.com
*.firstenergy.provantonline.com
*.fuelyourhealth.provantonline.com
*.livingwell.provantonline.com
*.nisc.provantonline.com
*.pge.provantonline.com
provantonline.com
*.provantonline.com
rejuvenice.net
*.rejuvenice.net
*.sandbox.rejuvenice.net
*.ww38.rejuvenice.net
simobusiness.com
*.simobusiness.com
*.test.simobusiness.com
*.analytics1.tamilgun.bio
*.cache.tamilgun.bio
*.datahub.tamilgun.bio
tamilgun.bio
*.tamilgun.bio
*.wildcard.tamilgun.bio
*.ww17.tamilgun.bio
*.com.zukaherbal.com
*.store.zukaherbal.com
zukaherbal.com
*.zukaherbal.com
Other domains in certificate