Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=mmbookone1.xyz
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 11, 2026
Valid Until
July 10, 2026
50 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
57:3D:EA:8F:AF:75:20:6C:47:B4:54:74:66:2C:7A:A9:1B:9E:40:7C:C3:90:FE:4B:0D:92:04:FE:E8:31:DF:76
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
anchored.it
*.anchored.it
*.admin.anchored.it
*.api.anchored.it
*.app.anchored.it
*.backend.anchored.it
*.dev.anchored.it
*.imap.anchored.it
atherthishinhe.com
*.atherthishinhe.com
*.ep-mimecast.atherthishinhe.com
banana-store.co
*.banana-store.co
*.data.banana-store.co
*.insight.banana-store.co
*.prod.banana-store.co
ciliba.icu
*.ciliba.icu
*.orwww.ciliba.icu
*.viewww.ciliba.icu
*.com.dailycoffee.it
*.cpcontacts.dailycoffee.it
dailycoffee.it
*.dailycoffee.it
*.intelligence.dailycoffee.it
*.mail.dailycoffee.it
*.webdisk.dailycoffee.it
*.dash.gotrademarkets.org
gotrademarkets.org
*.gotrademarkets.org
hdfilmcehennemi3.xyz
*.hdfilmcehennemi3.xyz
*.ww25.hdfilmcehennemi3.xyz
idrainstitute.org
*.idrainstitute.org
*.mail.idrainstitute.org
*.ausmcedu.inoutfest.org
inoutfest.org
*.inoutfest.org
*.labratlab.inoutfest.org
*.cxy7eapk13uo6s3i.mmbookone1.xyz
mmbookone1.xyz
*.mmbookone1.xyz
*.random.mmbookone1.xyz
*.wildcard.mmbookone1.xyz
*.ww25.mmbookone1.xyz
*.ww38.mmbookone1.xyz
newandnow.it
*.newandnow.it
*.www.newandnow.it
osscbs.org
*.osscbs.org
*.random.osscbs.org
*.ww38.osscbs.org
powerhealthmassage.com
*.powerhealthmassage.com
*.ww25.powerhealthmassage.com
*.blog.pracaligum.pl
pracaligum.pl
*.pracaligum.pl
*.analytic.shoesoff.it
*.board.shoesoff.it
*.flowiseai.shoesoff.it
shoesoff.it
*.shoesoff.it
*.gestao.tecno.bio
tecno.bio
*.tecno.bio
torquelinegarage.com.au
*.torquelinegarage.com.au
*.ww38.torquelinegarage.com.au
*.1m.v20.club
*.1n.v20.club
*.38.v20.club
*.admin.v20.club
*.apps.v20.club
*.dev.v20.club
v20.club
*.v20.club
*.eshop.vnimavehracky.sk
*.magazin.vnimavehracky.sk
*.old.vnimavehracky.sk
*.staging-magazin.vnimavehracky.sk
*.staging.vnimavehracky.sk
vnimavehracky.sk
*.vnimavehracky.sk
*.random.your-privacy-policy-url.com
your-privacy-policy-url.com
*.your-privacy-policy-url.com
Other domains in certificate