Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=capitalflash.cfd
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 14, 2026
Valid Until
August 12, 2026
68 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
36:54:92:B4:A1:99:9D:06:C9:E1:6B:62:F3:15:F0:94:4E:11:55:3C:4C:CA:E0:0F:65:BB:C6:18:E4:0A:2E:E6
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
cloudfaler.support
*.cloudfaler.support
capitalflash.cfd
*.capitalflash.cfd
caraccidentslawyer.org
*.caraccidentslawyer.org
cdnjh.sbs
*.cdnjh.sbs
classicmondial.com
*.classicmondial.com
clavemail.com
*.clavemail.com
cloudimpulselabs.click
*.cloudimpulselabs.click
cmbescrowsltd.com
*.cmbescrowsltd.com
codegoround.com
*.codegoround.com
collagenpowder.com
*.collagenpowder.com
communidrive.com
*.communidrive.com
corrovent.com
*.corrovent.com
cozy.domains
*.cozy.domains
d-inspection-925973831.click
*.d-inspection-925973831.click
drillingaiq.com
*.drillingaiq.com
droneconsultingsolutions.com
*.droneconsultingsolutions.com
ebsynergix.com
*.ebsynergix.com
echoes.it.com
*.echoes.it.com
ecocyclist.today
*.ecocyclist.today
elaracore.co
*.elaracore.co
experiancreditbureau.org
*.experiancreditbureau.org
houstonflooring.top
*.houstonflooring.top
htai2019.org
*.htai2019.org
libdental.com
*.libdental.com
mpwghb.gdn
*.mpwghb.gdn
mspg5-03.com
*.mspg5-03.com
naissanceliste.com
*.naissanceliste.com
*.vpn.naissanceliste.com
nekofinancial.com
*.nekofinancial.com
nestiva.co
*.nestiva.co
neters.cn
*.neters.cn
pojd662.cc
*.pojd662.cc
richardjmagoma.com
*.richardjmagoma.com
ships.bot
*.ships.bot
spearbum.com
*.spearbum.com
stagedkuc.com
*.stagedkuc.com
starlingrecords.com
*.starlingrecords.com
supaplayer.com
*.supaplayer.com
suuperdeals.info
*.suuperdeals.info
sylgronita.cfd
*.sylgronita.cfd
taveroa.com
*.taveroa.com
theconebar.com
*.theconebar.com
tokenomicsmodels.com
*.tokenomicsmodels.com
*.vpn.tokenomicsmodels.com
*.dashboard.usmarineconsult-mil.cam
usmarineconsult-mil.cam
*.usmarineconsult-mil.cam
Other domains in certificate