Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=extendingme.org
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
May 29, 2026
Valid Until
August 27, 2026
80 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3D:AD:3A:0A:8A:26:F9:0C:9A:AC:C5:C9:06:B3:0D:69:B0:DB:30:94:9D:BC:3F:5B:BC:B9:8D:30:70:F3:9F:5A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
onelink.it
*.onelink.it
*.analytics.onelink.it
*.app.onelink.it
*.backend.onelink.it
*.chart.onelink.it
*.dashboards.onelink.it
*.m.onelink.it
*.metric.onelink.it
*.reporting.onelink.it
*.smarturl.onelink.it
*.stories.onelink.it
*.superset.onelink.it
*.visual.onelink.it
ahimsayogatherapy.com
*.ahimsayogatherapy.com
*.autodiscover.ahimsayogatherapy.com
*.cpanel.ahimsayogatherapy.com
*.cpcalendars.ahimsayogatherapy.com
*.ftp.ahimsayogatherapy.com
*.m.ahimsayogatherapy.com
*.mail.ahimsayogatherapy.com
bogorprojector.xyz
*.bogorprojector.xyz
*.ww38.bogorprojector.xyz
cargasolineras.com
*.cargasolineras.com
*.autodiscover.charmsandbeads.com
charmsandbeads.com
*.charmsandbeads.com
clickonline.biz
*.clickonline.biz
extendingme.org
*.extendingme.org
*.pay.extendingme.org
*.api.fmovie.gd
fmovie.gd
*.fmovie.gd
*.flowiseai.kitchinaid.com
kitchinaid.com
*.kitchinaid.com
*.qa.kitchinaid.com
*.ww25.kitchinaid.com
*.247.kryteratradfin.com
*.247s.kryteratradfin.com
*.app.kryteratradfin.com
kryteratradfin.com
*.kryteratradfin.com
*.solisgate.kryteratradfin.com
*.vividbyt.kryteratradfin.com
mrbabeswebcams.com
*.mrbabeswebcams.com
*.app.muos.it
*.backend.muos.it
*.hostmaster.muos.it
muos.it
*.muos.it
*.smtp.muos.it
nhacaimb88.info
*.nhacaimb88.info
*.stage.nhacaimb88.info
*.pay.ripple.support
ripple.support
*.ripple.support
silverstatejunkremoval.com
*.silverstatejunkremoval.com
*.rustore.siongsan.shop
siongsan.shop
*.siongsan.shop
*.taf.toolhouse.cc
toolhouse.cc
*.toolhouse.cc
*.myadriatic.total-travel.org
total-travel.org
*.total-travel.org
*.04gmyw.tradecontrols.dev
*.95cf32aa-4e84-491c-9a21-8c3bf77b2a8d.tradecontrols.dev
*.admin.tradecontrols.dev
*.api.tradecontrols.dev
*.app.tradecontrols.dev
*.assets.tradecontrols.dev
*.demo.tradecontrols.dev
*.dev.tradecontrols.dev
*.members.tradecontrols.dev
*.test.tradecontrols.dev
tradecontrols.dev
*.tradecontrols.dev
tricking.it
*.tricking.it
Other domains in certificate