Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=brightpathforward.lol
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 17, 2026
Valid Until
July 16, 2026
66 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8C:ED:F1:3A:8D:F5:BF:9C:6A:67:57:6F:87:EF:D8:24:D8:5A:D2:84:81:C2:EF:0E:BA:05:F0:10:16:A9:E4:B8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
aole.com
*.aole.com
*.account.aole.com
*.dangban.aole.com
*.dbis.aole.com
*.googlwww.aole.com
*.ls.aole.com
*.media.aole.com
*.phillips-central.aole.com
*.pub.aole.com
*.push.aole.com
*.qiandaocdn.aole.com
*.tpines.aole.com
*.vespa.aole.com
*.wz.aole.com
alliance.domains
*.alliance.domains
*.fbrclz.alliance.domains
bella.com.au
*.bella.com.au
*.by.bella.com.au
*.ww25.bella.com.au
*.alfabank.brightpathforward.lol
brightpathforward.lol
*.brightpathforward.lol
*.backend.desihies.com
*.beta.desihies.com
desihies.com
*.desihies.com
*.ebay.desihies.com
*.hostmaster.desihies.com
*.smtp.desihies.com
*.www.desihies.com
fuck1069.com
*.fuck1069.com
*.sitemap.fuck1069.com
*.1dpicd6h.jibada7.xyz
*.cd6h1dpi.jibada7.xyz
*.cd6hcd6h.jibada7.xyz
*.cd6hmsdt.jibada7.xyz
jibada7.xyz
*.jibada7.xyz
*.msdtcd6h.jibada7.xyz
*.msdtsjsf.jibada7.xyz
*.r2ym1dpi.jibada7.xyz
*.r2ymmsdt.jibada7.xyz
*.sjsf1dpi.jibada7.xyz
*.sjsfmsdt.jibada7.xyz
*.sjsfsjsf.jibada7.xyz
*.dev.khvkegc.top
khvkegc.top
*.khvkegc.top
marketspaces.co
*.marketspaces.co
*.www.marketspaces.co
mediterraneankitchenbar.co.uk
*.mediterraneankitchenbar.co.uk
sheenriah.com
*.sheenriah.com
*.users.sheenriah.com
*.backend.siracusaalberghi.com
*.demo.siracusaalberghi.com
*.dev.siracusaalberghi.com
siracusaalberghi.com
*.siracusaalberghi.com
*.backup.sv88vi.fun
*.fachhandel.sv88vi.fun
*.ptero.sv88vi.fun
*.springboot.sv88vi.fun
*.ssh.sv88vi.fun
*.staging.sv88vi.fun
sv88vi.fun
*.sv88vi.fun
thefgjfghkkgroup.club
*.thefgjfghkkgroup.club
travessias.com
*.travessias.com
*.58e10518-4edf-47a6-97b8-82cbdddced97.v9betmi.info
*.api.v9betmi.info
*.c8e4df6f-e45b-4edb-85ad-52a2a41183c2.v9betmi.info
*.files.v9betmi.info
*.members.v9betmi.info
v9betmi.info
*.v9betmi.info
wilmingtonwineco.com
*.wilmingtonwineco.com
*.www.wilmingtonwineco.com
*.usaryugakunikki.workmama.info
workmama.info
*.workmama.info
Other domains in certificate