Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=lgqn.town
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 15, 2026
Valid Until
July 14, 2026
54 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BC:22:1D:CD:85:1F:B6:C9:A8:C1:5C:CD:43:0E:25:4E:70:D5:7D:07:FD:BD:66:A7:E0:BC:2E:41:AA:22:5F:A7
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
cinematic.it
*.cinematic.it
*.app.cinematic.it
*.demo-visualizations.cinematic.it
*.preview.cinematic.it
*.remote.cinematic.it
*.report.cinematic.it
*.smtp.cinematic.it
*.superset.cinematic.it
302hd4.com
*.302hd4.com
*.api.302hd4.com
*.autoconfig.302hd4.com
*.chat.302hd4.com
*.my.302hd4.com
*.myswsmy.302hd4.com
*.zimbra.302hd4.com
a160lls.top
*.a160lls.top
*.gyfhjmfc.a160lls.top
bentcare.com
*.bentcare.com
*.git.bentcare.com
buketisljubavlju.com
*.buketisljubavlju.com
*.static.buketisljubavlju.com
*.ww25.buketisljubavlju.com
*.ww38.buketisljubavlju.com
carnivoreshd.com
*.carnivoreshd.com
*.ww16.carnivoreshd.com
*.ww25.carnivoreshd.com
*.app.clontivexmap.xyz
*.ave.clontivexmap.xyz
*.b47f601e-83d2-4eef-90f9-a99b8f89654b.clontivexmap.xyz
*.blue.clontivexmap.xyz
clontivexmap.xyz
*.clontivexmap.xyz
*.www.clontivexmap.xyz
*.dev.geolite.mobi
geolite.mobi
*.geolite.mobi
hi88club.online
*.hi88club.online
insightdrive.digital
*.insightdrive.digital
jxyworld.com.cn
*.jxyworld.com.cn
*.sitemap.jxyworld.com.cn
*.sitemaps.jxyworld.com.cn
lgqn.town
*.lgqn.town
*.azc-almera.luminus.cfd
*.beton-ze-zbrojeniem-rozproszonym-cena.luminus.cfd
*.deckshop-mighty-miner.luminus.cfd
*.joe-dante-imdb.luminus.cfd
*.john-deere-lx279-deck-belt-diagram.luminus.cfd
luminus.cfd
*.luminus.cfd
*.scope-5-letters-crossword-clue.luminus.cfd
*.upcmail-hispeed.luminus.cfd
*.mx.nicemotel.com
nicemotel.com
*.nicemotel.com
*.blogs.nytes.com
*.development.nytes.com
*.extranet.nytes.com
*.gitlab.nytes.com
*.helpdesk.nytes.com
*.id.nytes.com
nytes.com
*.nytes.com
*.status.nytes.com
*.topics.nytes.com
*.video.nytes.com
*.ww17.nytes.com
sicreedpontex.com
*.sicreedpontex.com
*.cpcontacts.tarakeshwornews.com
*.mail.tarakeshwornews.com
tarakeshwornews.com
*.tarakeshwornews.com
tiespz.love
*.tiespz.love
*.chat.tplinglogin.net
*.preview.tplinglogin.net
*.superset.tplinglogin.net
tplinglogin.net
*.tplinglogin.net
*.ww16.tplinglogin.net
Other domains in certificate