Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=debitt.cards
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 18, 2026
Valid Until
July 17, 2026
66 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
AA:87:C3:85:6A:EC:A0:36:BF:32:E6:AE:22:F9:6D:BD:C3:D0:C3:5D:0E:ED:3B:79:E0:56:30:27:2D:D2:1E:04
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
debitt.cards
*.debitt.cards
*.admin.debitt.cards
*.app.debitt.cards
*.b3808f44-31f4-455e-8430-97913119ce22.debitt.cards
*.b6c012d4-4d07-43d7-bcbe-b7ce275aa959.debitt.cards
*.card.debitt.cards
*.dashboard.debitt.cards
*.demo.debitt.cards
*.dev.debitt.cards
*.hostmaster.debitt.cards
*.members.debitt.cards
*.mx1.debitt.cards
*.staging.debitt.cards
*.test.debitt.cards
*.web1.debitt.cards
*.a.casasabina.es
*.admin.casasabina.es
*.alhost.casasabina.es
*.analytic.casasabina.es
*.analytics.casasabina.es
*.api.casasabina.es
*.app.casasabina.es
*.apuxjzkf.casasabina.es
*.backend.casasabina.es
*.bi.casasabina.es
casasabina.es
*.casasabina.es
*.correo-e.casasabina.es
*.correo-electronico.casasabina.es
*.dash.casasabina.es
*.dashs.casasabina.es
*.demo.casasabina.es
*.dev.casasabina.es
*.docs.casasabina.es
*.external.casasabina.es
*.f3459710-6b35-42f1-a9bb-6c84bd286662.casasabina.es
*.hrmgcyxe.casasabina.es
*.hspzgalhost.casasabina.es
*.intranet.casasabina.es
*.ixncazhl.casasabina.es
*.localhost.casasabina.es
*.m.casasabina.es
*.mail.casasabina.es
*.new.casasabina.es
*.owa1.casasabina.es
*.oxfjqkyr.casasabina.es
*.portal.casasabina.es
*.redash.casasabina.es
*.reporting.casasabina.es
*.shop.casasabina.es
*.sktvianq.casasabina.es
*.smtp.casasabina.es
*.staging.casasabina.es
*.stfbzpuy.casasabina.es
*.store.casasabina.es
*.superset.casasabina.es
*.tgfjxoph.casasabina.es
*.vpn.casasabina.es
*.webmail.casasabina.es
*.www.casasabina.es
*.ztuawncl.casasabina.es
cheapy.cn
*.cheapy.cn
*.m.cheapy.cn
*.178ac795-7b47-42b4-a665-84df41c93779.drozonew.com
*.admin.drozonew.com
*.assets.drozonew.com
drozonew.com
*.drozonew.com
*.email.drozonew.com
*.rds.drozonew.com
*.rdweb.drozonew.com
*.remote.drozonew.com
*.root.drozonew.com
*.sitemap.drozonew.com
eupornstar.info
*.eupornstar.info
*.hostmaster.eupornstar.info
*.ws.eupornstar.info
*.wss.eupornstar.info
gonenmobilyacim.com
*.gonenmobilyacim.com
groupdigitalmedia.biz
*.groupdigitalmedia.biz
hitek.au
*.hitek.au
*.mail.hitek.au
*.webmail.hitek.au
Other domains in certificate