Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=webfacebook.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 17, 2026
Valid Until
July 16, 2026
57 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3F:72:62:AE:28:91:9F:98:7A:7D:B2:D1:FC:A3:9E:9B:A6:AF:DA:2E:45:21:6B:A3:60:7E:52:CF:F9:A7:3E:B8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
contentstock.com
*.contentstock.com
*.cdn.contentstock.com
*.ww16.contentstock.com
aiden.com.au
*.aiden.com.au
*.mail.aiden.com.au
*.ww25.aiden.com.au
*.api.bespokebrandon.com
bespokebrandon.com
*.bespokebrandon.com
*.gitlab.bespokebrandon.com
*.random.bespokebrandon.com
cdoer.com
*.cdoer.com
*.ftp.cdoer.com
*.hostmaster.cdoer.com
*.www.cdoer.com
conservator.org
*.conservator.org
*.members.conservator.org
*.phipps.conservator.org
*.random.conservator.org
*.router.conservator.org
corvetts.com
*.corvetts.com
*.forums.corvetts.com
*.random.corvetts.com
*.ww16.corvetts.com
digitalbalance.co
*.digitalbalance.co
dinedata.com
*.dinedata.com
*.wildcard.dinedata.com
firstcitizengroup.com
*.firstcitizengroup.com
*.taf.firstcitizengroup.com
*.vmspub.firstcitizengroup.com
flourishsoar.com.au
*.flourishsoar.com.au
*.random.flourishsoar.com.au
guiyangmeinian.cn
*.guiyangmeinian.cn
*.www.guiyangmeinian.cn
holydaytaxis.com
*.holydaytaxis.com
*.image.holydaytaxis.com
*.essence.magnetisme.com
magnetisme.com
*.magnetisme.com
makd59.com
*.makd59.com
*.cloud.mullinslawoffice.com
mullinslawoffice.com
*.mullinslawoffice.com
naprzod.com
*.naprzod.com
*.en.pornpucs.com
pornpucs.com
*.pornpucs.com
*.random.pornpucs.com
*.ww38.pornpucs.com
*.corretor.portseguro.com.br
*.email.portseguro.com.br
portseguro.com.br
*.portseguro.com.br
*.saude.portseguro.com.br
preparation.com.au
*.preparation.com.au
*.jobs.sample1688.cfd
*.online.sample1688.cfd
sample1688.cfd
*.sample1688.cfd
spoilers.com.au
*.spoilers.com.au
tallbergsforlagsbokhandel.com
*.tallbergsforlagsbokhandel.com
*.ww25.tallbergsforlagsbokhandel.com
*.ww38.tallbergsforlagsbokhandel.com
vdgn72.com
*.vdgn72.com
weberseasoning.com
*.weberseasoning.com
*.c10r.webfacebook.com
*.m.webfacebook.com
webfacebook.com
*.webfacebook.com
*.wwww.webfacebook.com
xn--backfrmchen-vfb.de
*.xn--backfrmchen-vfb.de
Other domains in certificate