Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=0k-npam5pl2ung-nwy8ml2v93l.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 19, 2026
Valid Until
May 20, 2026
87 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
17:34:58:57:F6:A5:F6:05:C4:95:55:25:6B:C6:3F:7C:C0:E2:4F:AB:B9:79:4F:C4:38:89:CB:F2:52:C9:DE:55
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
84 domains
crakes.com
*.crakes.com
*.bell.crakes.com
*.portal.crakes.com
*.preprod-superset.crakes.com
*.ww16.crakes.com
*.ww25.crakes.com
*.ww38.crakes.com
0k-npam5pl2ung-nwy8ml2v93l.com
*.0k-npam5pl2ung-nwy8ml2v93l.com
doesryankavanaughlooklikemichaelfassbender.com
*.doesryankavanaughlooklikemichaelfassbender.com
elkabl.click
*.elkabl.click
jisa111.com
*.jisa111.com
*.5m2n5b.moonglade.site
moonglade.site
*.moonglade.site
*.statistics.moonglade.site
surgo-tex.com
*.surgo-tex.com
tripplednursing.com
*.tripplednursing.com
*.abobbes-tips.twitter.bio
*.abonnes-espaces-abonnes.twitter.bio
*.abonnes-paypal-activites.twitter.bio
*.abonnes-tips.twitter.bio
*.abonnes-valvetubes.twitter.bio
*.abonnes-yahoomls.twitter.bio
*.abonnes.twitter.bio
*.abonnesandroid-tips.twitter.bio
*.activites-android-tips.twitter.bio
*.activites-cloud8-uk-cf.twitter.bio
*.activites-espaces-abonnes.twitter.bio
*.activites.twitter.bio
*.activitesla-uk-cf.twitter.bio
*.android-netflix.twitter.bio
*.android-paypal.twitter.bio
*.android-tips-espaces.twitter.bio
*.android-tips-netflix-espaces-abonnes.twitter.bio
*.android-tips-tips.twitter.bio
*.android-tips-yahoomls.twitter.bio
*.android-tipsabonnes.twitter.bio
*.android-tipscloud8-uk-cf.twitter.bio
*.android-uk.twitter.bio
*.android-valvetubes.twitter.bio
*.android.twitter.bio
*.androidyahoomls.twitter.bio
*.cf.twitter.bio
*.cfgitlab-code.twitter.bio
*.cfnetflix-uk-cftips.twitter.bio
*.cloud.twitter.bio
*.cloud8-activites.twitter.bio
*.cloud8-tinderellaanna.twitter.bio
*.cloud8-uk-cf-paypal.twitter.bio
*.cloud8-uk-cf-uk.twitter.bio
*.cloud8-uk-cfandroid.twitter.bio
*.cloud8-uk-cfcode.twitter.bio
*.cloud8-uk-cfww25.twitter.bio
*.cloud8-uk-tinderellaanna.twitter.bio
*.cloud8-valvetubes-cf.twitter.bio
*.cloud8-yahoomls-cf.twitter.bio
*.cloud8.twitter.bio
*.cloud8twittersnark.twitter.bio
*.code-yahoomls.twitter.bio
*.codenetflix-espaces-abonnes.twitter.bio
*.codepaypal-activites.twitter.bio
*.datagrail.twitter.bio
*.espaces-tips.twitter.bio
*.gitlab-code.twitter.bio
*.gitlab.twitter.bio
*.netflix.twitter.bio
*.paypal-activites.twitter.bio
*.paypal.twitter.bio
*.profile-profile.twitter.bio
*.tinderboxcandleco.twitter.bio
twitter.bio
*.twitter.bio
*.valvetubes.twitter.bio
*.vassetsrnacularizations.twitter.bio
*.ww.twitter.bio
*.ww25.twitter.bio
*.yahoomls.twitter.bio
Other domains in certificate