Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=xn--10x.com
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
May 30, 2026
Valid Until
August 28, 2026
72 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5D:9D:84:48:10:D5:41:73:95:93:43:5F:96:97:C7:05:3B:4F:1F:92:F1:DE:3A:4C:FA:75:71:F9:33:63:81:78
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
85 domains
38000s.app
*.38000s.app
*.adm.38000s.app
*.backend.38000s.app
*.beta.38000s.app
*.dev.38000s.app
*.account.an99.shop
an99.shop
*.an99.shop
*.backend.an99.shop
*.crm.an99.shop
*.jnu88i.an99.shop
*.rustore.an99.shop
*.8c3bd095-bead-4dcd-b906-3c552517ff0c.casinorewwards.com
*.8e13f046-b178-418f-9115-eed68cd34ad9.casinorewwards.com
*.admin.casinorewwards.com
*.airflow.casinorewwards.com
*.alpha-airflow.casinorewwards.com
*.alpha-jenkins.casinorewwards.com
*.alpha.casinorewwards.com
*.analytics-prod.casinorewwards.com
*.analytics.casinorewwards.com
*.api.casinorewwards.com
*.apps.casinorewwards.com
*.argo.casinorewwards.com
casinorewwards.com
*.casinorewwards.com
*.dashboard.casinorewwards.com
*.data.casinorewwards.com
*.demo.casinorewwards.com
*.dev.casinorewwards.com
*.dev1metabase.casinorewwards.com
*.development-cicd.casinorewwards.com
*.elmditest-bi.casinorewwards.com
*.emv1.casinorewwards.com
*.es.casinorewwards.com
*.flow-prod.casinorewwards.com
*.ftp.casinorewwards.com
*.gapbonotexistsstore.casinorewwards.com
*.hucajproduction.casinorewwards.com
*.internal.casinorewwards.com
*.intranet.casinorewwards.com
*.m.casinorewwards.com
*.metabase.casinorewwards.com
*.metrics.casinorewwards.com
*.mta-sts.casinorewwards.com
*.notexistsdemo.casinorewwards.com
*.notexistsstore.casinorewwards.com
*.notexiststest.casinorewwards.com
*.ore.casinorewwards.com
*.oyxfqmetric.casinorewwards.com
*.portal.casinorewwards.com
*.production.casinorewwards.com
*.remote.casinorewwards.com
*.reporting.casinorewwards.com
*.shop.casinorewwards.com
*.staging-argo.casinorewwards.com
*.staging.casinorewwards.com
*.stats.casinorewwards.com
*.std-argo.casinorewwards.com
*.store.casinorewwards.com
*.summary.casinorewwards.com
*.superset-prod.casinorewwards.com
*.superset.casinorewwards.com
*.test-bi.casinorewwards.com
*.test.casinorewwards.com
*.vjieqdev1metabase.casinorewwards.com
*.vpn.casinorewwards.com
*.workflow.casinorewwards.com
*.wuapldevelopment-cicd.casinorewwards.com
*.ww25.casinorewwards.com
*.www.casinorewwards.com
*.wwww.casinorewwards.com
*.backoffice.xn--10x.com
*.backup.xn--10x.com
*.client.xn--10x.com
*.demo.xn--10x.com
*.haglbqa.xn--10x.com
*.mailer.xn--10x.com
*.secure.xn--10x.com
*.uat.xn--10x.com
*.v1.xn--10x.com
*.www.xn--10x.com
xn--10x.com
*.xn--10x.com
Other domains in certificate