Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=fornswift.com
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
June 04, 2026
Valid Until
September 02, 2026
80 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
6C:B2:79:EF:C2:25:98:C1:CF:37:17:BE:91:F3:B5:CC:E1:DD:A6:11:19:6B:08:7F:59:22:7B:A7:0F:A8:05:E8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
cicdai.com
*.cicdai.com
*.cn-beijing.cicdai.com
412603.lol
*.412603.lol
*.7lpsk8.412603.lol
botentra.info
*.botentra.info
*.9hw0ya.feministwriting.click
feministwriting.click
*.feministwriting.click
*.admin.fornswift.com
*.ai-preview.fornswift.com
*.analytics.fornswift.com
*.app.fornswift.com
*.argo.fornswift.com
*.bbs.fornswift.com
*.cpanel.fornswift.com
*.dash.fornswift.com
*.dashboard.fornswift.com
*.dashboards.fornswift.com
*.dev.fornswift.com
*.flow-alpha.fornswift.com
*.flow-test.fornswift.com
*.flowise.fornswift.com
*.flowiseai-staging.fornswift.com
fornswift.com
*.fornswift.com
*.hostmaster.fornswift.com
*.intelligence.fornswift.com
*.intranet.fornswift.com
*.local.fornswift.com
*.mail.fornswift.com
*.metric.fornswift.com
*.metrics.fornswift.com
*.notexistsdev.fornswift.com
*.old.fornswift.com
*.portal.fornswift.com
*.preview.fornswift.com
*.remote.fornswift.com
*.report.fornswift.com
*.stats.fornswift.com
*.store.fornswift.com
*.superset.fornswift.com
*.support.fornswift.com
*.webmail.fornswift.com
*.workflow.fornswift.com
*.ww38.fornswift.com
*.wwa.fornswift.com
*.www.fornswift.com
*.03d34f6b-53f4-4540-be2d-ac42a769ff3a.glitzmarriott.info
*.36660cc2-5ab1-4317-bdcd-d6acd9146b7d.glitzmarriott.info
*.9y8qzw.glitzmarriott.info
*.a.glitzmarriott.info
*.api.glitzmarriott.info
*.app.glitzmarriott.info
glitzmarriott.info
*.glitzmarriott.info
*.www.glitzmarriott.info
*.app.officialarbitrixzone.com
officialarbitrixzone.com
*.officialarbitrixzone.com
*.sitemap.officialarbitrixzone.com
*.sitemaps.officialarbitrixzone.com
*.jgboib.postcolonialwriting.digital
postcolonialwriting.digital
*.postcolonialwriting.digital
*.api.pot4000.com
*.board.pot4000.com
*.dev.pot4000.com
*.mta-sts.pot4000.com
*.notexistsbackend.pot4000.com
*.owa.pot4000.com
*.portal.pot4000.com
pot4000.com
*.pot4000.com
*.store.pot4000.com
user2fa-verify.com
*.user2fa-verify.com
villaconcrete1.tech
*.villaconcrete1.tech
vsa687.cc
*.vsa687.cc
vscj9y.cc
*.vscj9y.cc
*.shop.yeepay.org
*.ww25.yeepay.org
*.ww38.yeepay.org
yeepay.org
*.yeepay.org
Other domains in certificate