Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=0418-myopia.sbs
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 18, 2026
Valid Until
July 17, 2026
61 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
91:E6:96:40:C8:E5:4B:54:2F:E4:49:63:35:B0:11:3D:F2:67:89:95:ED:67:C9:C3:E9:47:33:6B:20:0E:5E:60
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
ct101.best
*.ct101.best
0418-myopia.sbs
*.0418-myopia.sbs
3dinventions.com
*.3dinventions.com
3hpdzte.cc
*.3hpdzte.cc
45200.blog
*.45200.blog
51467.lgbt
*.51467.lgbt
63verse.com
*.63verse.com
7uzcf.lol
*.7uzcf.lol
97987trustworthy.com
*.97987trustworthy.com
99128.loan
*.99128.loan
agint.associates
*.agint.associates
apkalternatif.vip
*.apkalternatif.vip
as4455.com
*.as4455.com
ashdot-naharayim.com
*.ashdot-naharayim.com
*.9558aff1-14a1-46c1-91d8-be11021a68ef.aviditycare.com
aviditycare.com
*.aviditycare.com
boxinginnovation.com
*.boxinginnovation.com
brailledoodle.com
*.brailledoodle.com
bud99.it.com
*.bud99.it.com
capitalisticallyrecruitgrotesque.pro
*.capitalisticallyrecruitgrotesque.pro
carrousadosementradaparaestudantes.sbs
*.carrousadosementradaparaestudantes.sbs
cashuba.xyz
*.cashuba.xyz
cbd-ingrosso-svizzera.com
*.cbd-ingrosso-svizzera.com
chicken-chase-bonus.click
*.chicken-chase-bonus.click
citizensforapublicoption.com
*.citizensforapublicoption.com
cristedgemarket.com
*.cristedgemarket.com
cybermaven.ai
*.cybermaven.ai
dhlparcelservice.com
*.dhlparcelservice.com
economiser-argent.eu
*.economiser-argent.eu
ehaggler.xyz
*.ehaggler.xyz
ellielarke.com
*.ellielarke.com
eltidormitel.com
*.eltidormitel.com
engineereddiypro.live
*.engineereddiypro.live
eundlvenqqlf123app.xyz
*.eundlvenqqlf123app.xyz
f1wp37.com
*.f1wp37.com
firewallfort.com
*.firewallfort.com
lpl3g.top
*.lpl3g.top
matongrungtphcm.com
*.matongrungtphcm.com
mp3official.com
*.mp3official.com
rotalifeestetik.com
*.rotalifeestetik.com
sadahaqhindi.com
*.sadahaqhindi.com
sanalrenk.com
*.sanalrenk.com
scannerqr.org
*.scannerqr.org
skywine.art
*.skywine.art
southernloghome.com
*.southernloghome.com
Other domains in certificate