Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=966114.xyz
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 17, 2026
Valid Until
August 15, 2026
82 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
73:6B:43:F7:8B:1A:1E:67:35:B1:A4:DD:DF:B5:92:21:64:1D:69:2B:F0:24:EF:00:BB:30:9D:00:56:61:CF:19
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
cinenorte.com
*.cinenorte.com
*.amazon-update-helstek.cinenorte.com
*.sistema.cinenorte.com
573dlls.top
*.573dlls.top
*.g1zosc.573dlls.top
*.kk2.573dlls.top
6027crxy.top
*.6027crxy.top
*.z0fcxr.6027crxy.top
966114.xyz
*.966114.xyz
analyzeamplifyymagnet.info
*.analyzeamplifyymagnet.info
*.fal4om.analyzeamplifyymagnet.info
*.fi0p2u.analyzeamplifyymagnet.info
ascendamplifyymagnet.info
*.ascendamplifyymagnet.info
*.dlfako.ascendamplifyymagnet.info
*.pet2o.ascendamplifyymagnet.info
*.xpet2o.ascendamplifyymagnet.info
*.1.brandcatalystmagnetic.com
brandcatalystmagnetic.com
*.brandcatalystmagnetic.com
*.ci-bot.brandcatalystmagnetic.com
*.flowiseai.brandcatalystmagnetic.com
*.gitlab.brandcatalystmagnetic.com
*.jenkins.brandcatalystmagnetic.com
*.production.brandcatalystmagnetic.com
*.sitemap.brandcatalystmagnetic.com
*.sitemaps.brandcatalystmagnetic.com
*.superset-production.brandcatalystmagnetic.com
*.superset.brandcatalystmagnetic.com
*.visualize.brandcatalystmagnetic.com
*.viz-alpha.brandcatalystmagnetic.com
*.ww1.brandcatalystmagnetic.com
*.ww12.brandcatalystmagnetic.com
*.ww7.brandcatalystmagnetic.com
cannedmeals.com
*.cannedmeals.com
cuffcraze.shop
*.cuffcraze.shop
ew9opgt2m3iq5flfax2j.xyz
*.ew9opgt2m3iq5flfax2j.xyz
*.main.ew9opgt2m3iq5flfax2j.xyz
garina.vip
*.garina.vip
*.vip.garina.vip
*.www.garina.vip
*.backup.jerryspestcontrolllc.com
jerryspestcontrolllc.com
*.jerryspestcontrolllc.com
*.m.jerryspestcontrolllc.com
*.www.jerryspestcontrolllc.com
*.bracelet.nextwap.us
*.bridge.nextwap.us
*.cable.nextwap.us
*.filme.nextwap.us
*.hostmaster.nextwap.us
nextwap.us
*.nextwap.us
*.shared.nextwap.us
payzamfara.co
*.payzamfara.co
*.buzz.rajakingkong.com
*.com.rajakingkong.com
*.cpcontacts.rajakingkong.com
rajakingkong.com
*.rajakingkong.com
*.sitemaps.rajakingkong.com
*.lvnm9u.reviseamplifyymagnet.info
reviseamplifyymagnet.info
*.reviseamplifyymagnet.info
*.ymjtr8.reviseamplifyymagnet.info
*.blog.tatlibak.info
*.dwrvdsitemap.tatlibak.info
*.sitemap.tatlibak.info
*.sitemaps.tatlibak.info
tatlibak.info
*.tatlibak.info
*.www.tatlibak.info
*.930idy.upliftamplifyywave.info
*.pujo3.upliftamplifyywave.info
*.spujo3.upliftamplifyywave.info
upliftamplifyywave.info
*.upliftamplifyywave.info
*.m.www637cf.com
www637cf.com
*.www637cf.com
Other domains in certificate