Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=claimbox.xyz
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 17, 2026
Valid Until
July 16, 2026
64 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
61:E6:B0:36:F1:6E:D2:27:A7:10:7C:02:59:CA:B3:FA:6E:9D:0B:7A:AE:B5:64:EF:64:62:40:4B:16:61:F6:FA
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
codexcli.tech
*.codexcli.tech
3cdo4je.cc
*.3cdo4je.cc
92865.mobi
*.92865.mobi
96pde7gd9p.top
*.96pde7gd9p.top
a9q.cc
*.a9q.cc
awa85.icu
*.awa85.icu
bank-auto-car-sale3.today
*.bank-auto-car-sale3.today
bestaviatorgameappinstantwithdrawal.com
*.bestaviatorgameappinstantwithdrawal.com
boringvideos.com
*.boringvideos.com
boxsellers.com
*.boxsellers.com
braddockgsp.com
*.braddockgsp.com
brainbit-invest.com
*.brainbit-invest.com
claimbox.xyz
*.claimbox.xyz
exchangealleynyc.com
*.exchangealleynyc.com
ezyourwin.top
*.ezyourwin.top
gilmancontractorhq.com
*.gilmancontractorhq.com
goedkope.app
*.goedkope.app
hatorphoenix.com
*.hatorphoenix.com
heszhf.cc
*.heszhf.cc
instagramking.com
*.instagramking.com
j03z.life
*.j03z.life
jfys9hac.com
*.jfys9hac.com
jowototo.vip
*.jowototo.vip
jvlkt.cfd
*.jvlkt.cfd
lactophar.com
*.lactophar.com
mediherbcity.com
*.mediherbcity.com
myfavorgame.top
*.myfavorgame.top
premier-showsnetwork.com
*.premier-showsnetwork.com
regrowrevive.com
*.regrowrevive.com
roachmap.com
*.roachmap.com
schoolsponsoringregionna.com
*.schoolsponsoringregionna.com
schoolsponsoringregionoe.com
*.schoolsponsoringregionoe.com
schoolsponsoringregiontr.com
*.schoolsponsoringregiontr.com
schoolsponsoringregionwn.com
*.schoolsponsoringregionwn.com
selfesteemforkids.com
*.selfesteemforkids.com
smellslikeweed.info
*.smellslikeweed.info
sofea.top
*.sofea.top
sperfrix.com
*.sperfrix.com
t24drama.com
*.t24drama.com
techyscripts.top
*.techyscripts.top
teenpatticashwithdrawalapp.com
*.teenpatticashwithdrawalapp.com
trykoreecosystem.com
*.trykoreecosystem.com
zhu-dbc.com
*.zhu-dbc.com
zifufuu.info
*.zifufuu.info
zserver.net
*.zserver.net
Other domains in certificate