Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=spiritodancestudio.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 03, 2026
Valid Until
May 04, 2026
78 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E0:E1:9B:4C:21:A8:33:37:D1:31:4E:D4:1E:2E:88:CC:CC:DC:DC:B2:69:A1:B0:8E:64:FE:B1:A0:A6:D8:66:BA
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
88 domains
kahvem.com
*.kahvem.com
*.ww16.kahvem.com
567vip.xyz
*.567vip.xyz
*.ww25.567vip.xyz
*.ww6.567vip.xyz
abandoned-house-1.website
*.abandoned-house-1.website
*.backend.abandoned-house-1.website
*.checkout.abandoned-house-1.website
*.dev.abandoned-house-1.website
*.staging.abandoned-house-1.website
*.uat.abandoned-house-1.website
*.www.abandoned-house-1.website
bcbstx.co
*.bcbstx.co
*.events.bcbstx.co
belinsky.com
*.belinsky.com
*.ww25.belinsky.com
bigboobsmovie.com
*.bigboobsmovie.com
*.bounces.bigboobsmovie.com
*.cit.bigboobsmovie.com
*.classifieds.bigboobsmovie.com
*.crm.bigboobsmovie.com
*.dns01.bigboobsmovie.com
*.eugene.bigboobsmovie.com
*.gb.bigboobsmovie.com
*.icinga.bigboobsmovie.com
*.mailtest.bigboobsmovie.com
*.news.bigboobsmovie.com
*.paradise.bigboobsmovie.com
*.poczta.bigboobsmovie.com
*.relay.bigboobsmovie.com
*.rss.bigboobsmovie.com
*.sms2.bigboobsmovie.com
*.upc.bigboobsmovie.com
*.users.bigboobsmovie.com
*.vvv.bigboobsmovie.com
*.ww.bigboobsmovie.com
*.www-1.bigboobsmovie.com
boostmobilephone.com
*.boostmobilephone.com
*.ww17.boostmobilephone.com
*.ww25.boostmobilephone.com
caravana.com
*.caravana.com
*.ww25.caravana.com
*.4981.click-url.net
*.amaya.click-url.net
click-url.net
*.click-url.net
*.kala.click-url.net
*.yandex.click-url.net
*.yourdomain.click-url.net
*.zeenat.click-url.net
*.apps.daguio.com
daguio.com
*.daguio.com
*.m.daguio.com
*.ww11.daguio.com
*.ww17.daguio.com
robnihood.com
*.robnihood.com
*.wildcard.robnihood.com
*.ww25.robnihood.com
*.academia.spiritodancestudio.com
*.m.spiritodancestudio.com
*.mail.spiritodancestudio.com
spiritodancestudio.com
*.spiritodancestudio.com
*.webdisk.spiritodancestudio.com
*.whm.spiritodancestudio.com
*.wwww.spiritodancestudio.com
superseed.studio
*.superseed.studio
tudora.com
*.tudora.com
*.ww25.tudora.com
tyrist.com
*.tyrist.com
*.ww11.tyrist.com
*.ww25.tyrist.com
*.en.vnhoi.com
vnhoi.com
*.vnhoi.com
Other domains in certificate