Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=booxie.co
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
May 31, 2026
Valid Until
August 29, 2026
66 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9D:70:0B:E8:73:A3:22:CC:3C:31:9A:24:87:E7:56:DA:2C:47:FD:EF:A3:AB:FA:0F:1F:56:67:EA:38:B1:A9:26
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
base64decoder.io
*.base64decoder.io
*.com.base64decoder.io
booxie.co
*.booxie.co
*.analyze.buycheapdrugs.com
buycheapdrugs.com
*.buycheapdrugs.com
*.email.buycheapdrugs.com
*.hostmaster.buycheapdrugs.com
*.m.buycheapdrugs.com
*.random.buycheapdrugs.com
*.www.buycheapdrugs.com
*.7qjcck.clover.baby
*.955dd46f-f770-4c0e-b970-ed6cc677d104.clover.baby
*.a.clover.baby
*.api.clover.baby
*.app.clover.baby
*.c13c16d4-a21a-4876-9812-82c8ad4fe375.clover.baby
clover.baby
*.clover.baby
*.corp.clover.baby
*.dev.clover.baby
*.eu.clover.baby
*.la.clover.baby
*.mail.clover.baby
*.prod.clover.baby
*.www.clover.baby
cryptojunkie.xyz
*.cryptojunkie.xyz
*.s28s9.cryptojunkie.xyz
*.sbd1u.cryptojunkie.xyz
*.2017.cssjs.co
*.access.cssjs.co
*.app.cssjs.co
*.b2b.cssjs.co
*.cash.cssjs.co
cssjs.co
*.cssjs.co
*.cultura.cssjs.co
*.dev.cssjs.co
*.gamepark.cssjs.co
*.iot.cssjs.co
*.kbfs.cssjs.co
*.look.cssjs.co
*.net-chinese.cssjs.co
*.public.cssjs.co
*.skype.cssjs.co
*.tools.cssjs.co
*.cpcontacts.dallasfinedining.com
dallasfinedining.com
*.dallasfinedining.com
*.vpnssl.dallasfinedining.com
dmwgz72f.world
*.dmwgz72f.world
freedomandethics.com
*.freedomandethics.com
irfab.com
*.irfab.com
linknhacai.org
*.linknhacai.org
*.m.linknhacai.org
*.1stop.morsalin.xyz
*.m.morsalin.xyz
*.md.morsalin.xyz
morsalin.xyz
*.morsalin.xyz
*.pro.morsalin.xyz
nuptialnurture.beauty
*.nuptialnurture.beauty
*.assets.paradiseportcafe.com
*.demo.paradiseportcafe.com
paradiseportcafe.com
*.paradiseportcafe.com
tightfittingdress.shop
*.tightfittingdress.shop
*.api.todo.spot
*.assets.todo.spot
*.b6785s.todo.spot
*.backup.todo.spot
*.dev.todo.spot
*.mailer.todo.spot
*.marketing.todo.spot
*.stg.todo.spot
todo.spot
*.todo.spot
*.v1.todo.spot
*.v2.todo.spot
wilhelminaalfredson.net
*.wilhelminaalfredson.net
Other domains in certificate