Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=sauce.ink
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 18, 2026
Valid Until
July 17, 2026
59 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
23:72:3D:82:78:27:DD:4A:66:E4:4F:AF:5F:7E:61:6D:0F:5A:64:06:4B:81:18:73:B4:A8:D9:F4:38:B1:12:13
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
phildax.com
*.phildax.com
*.account.phildax.com
*.api-check.phildax.com
*.api.phildax.com
*.app.phildax.com
*.assets.phildax.com
*.auth.phildax.com
*.autodiscover.phildax.com
*.backend-api.phildax.com
*.bigquery.phildax.com
*.blog.phildax.com
*.blogs.phildax.com
*.cart-stage.phildax.com
*.cdn-dev.phildax.com
*.check.phildax.com
*.checkout.phildax.com
*.ci.phildax.com
*.db2.phildax.com
*.demo.phildax.com
*.dev.phildax.com
*.download.phildax.com
*.eherrokhntsql1.phildax.com
*.email.phildax.com
*.external.phildax.com
*.graphql-api.phildax.com
*.graphql.phildax.com
*.healthcheck.phildax.com
*.hostmaster.phildax.com
*.images.phildax.com
*.k8s.phildax.com
*.lab.phildax.com
*.lp.phildax.com
*.luzazhostmaster.phildax.com
*.media.phildax.com
*.monitoring.phildax.com
*.mrjnitidccjs.phildax.com
*.notexistshostmaster.phildax.com
*.pay.phildax.com
*.pgsql.phildax.com
*.production.phildax.com
*.proof.phildax.com
*.rds.phildax.com
*.rdweb.phildax.com
*.registry.phildax.com
*.scripts.phildax.com
*.secure.phildax.com
*.sql1.phildax.com
*.stage.phildax.com
*.staging.phildax.com
*.static.phildax.com
*.steuma.phildax.com
*.store.phildax.com
*.themes.phildax.com
*.upload.phildax.com
*.uploads.phildax.com
*.vcs.phildax.com
*.vpn.phildax.com
*.webmail.phildax.com
*.xmggkcicd-production.phildax.com
*.api.roundass.xyz
*.css.roundass.xyz
*.m.roundass.xyz
*.media.roundass.xyz
*.mysql.roundass.xyz
*.new.roundass.xyz
*.panel.roundass.xyz
roundass.xyz
*.roundass.xyz
*.rustore.roundass.xyz
*.academy.sauce.ink
*.application.sauce.ink
*.booking.sauce.ink
*.bqbtwpay.sauce.ink
*.business.sauce.ink
*.client.sauce.ink
*.cloud.sauce.ink
*.events.sauce.ink
*.hostmaster.sauce.ink
*.invoice.sauce.ink
*.ipay.sauce.ink
*.main.sauce.ink
*.pay.sauce.ink
*.pm.sauce.ink
*.pos.sauce.ink
sauce.ink
*.sauce.ink
*.shopify.sauce.ink
*.system.sauce.ink
Other domains in certificate