Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=votepattijackson.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 13, 2026
Valid Until
May 14, 2026
89 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
67:21:06:6F:C1:AA:E0:EC:0C:14:0E:B9:5E:8E:20:B3:9E:17:73:E4:FA:88:69:5E:6C:DA:2B:4B:0A:B4:BD:3C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
dert.info
*.dert.info
aprogressforall.xyz
*.aprogressforall.xyz
babagana.com
*.babagana.com
beacons.blog
*.beacons.blog
bokepid.store
*.bokepid.store
bonzai.au
*.bonzai.au
brandish.ltd
*.brandish.ltd
*.ww25.brandish.ltd
checkfmi.info
*.checkfmi.info
cleckner.co
*.cleckner.co
*.store.cleckner.co
data-illustrator.com
*.data-illustrator.com
demovie.online
*.demovie.online
*.ipv6.demovie.online
*.mail.demovie.online
*.online.demovie.online
ekstrapensja.online
*.ekstrapensja.online
entermodal.com
*.entermodal.com
faketan.au
*.faketan.au
*.delivery.farfethc.com
farfethc.com
*.farfethc.com
*.food.farfethc.com
godji.pro
*.godji.pro
gseb.online
*.gseb.online
*.hostmaster.gseb.online
*.random.gseb.online
*.www.gseb.online
hitruyen.vip
*.hitruyen.vip
hugocarinsurance.online
*.hugocarinsurance.online
iseriesonline.net
*.iseriesonline.net
*.s1.iseriesonline.net
jc1ukgfmzwee.com
*.jc1ukgfmzwee.com
le-petit-colibri.store
*.le-petit-colibri.store
limetree.au
*.limetree.au
massachusettsusedcars.com
*.massachusettsusedcars.com
merriam-webster.site
*.merriam-webster.site
rehydrate.au
*.rehydrate.au
rrb.au
*.rrb.au
sin88bet.vip
*.sin88bet.vip
startfresh.au
*.startfresh.au
suffolkanimalrescue.org
*.suffolkanimalrescue.org
tecnicolineablanca.com
*.tecnicolineablanca.com
thejsdesignlab.com
*.thejsdesignlab.com
trendyolal11.xyz
*.trendyolal11.xyz
tuyazhe.top
*.tuyazhe.top
*.ww16.tuyazhe.top
*.www.tuyazhe.top
votepattijackson.com
*.votepattijackson.com
vrboner.com
*.vrboner.com
wirhuloans.com
*.wirhuloans.com
wlson.com
*.wlson.com
Other domains in certificate