Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=incomecalculator.in
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 15, 2026
Valid Until
August 13, 2026
83 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
81:4D:57:48:8C:2F:66:1E:D2:4D:84:6B:99:8D:5D:31:F7:2B:9E:D2:BA:04:92:9B:61:59:99:55:40:78:39:D9
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
braidbloom.shop
*.braidbloom.shop
*.staging.braidbloom.shop
arx.md
*.arx.md
*.server.arx.md
deltaofficetoolkit.com
*.deltaofficetoolkit.com
*.dns.deltaofficetoolkit.com
*.hostmaster.deltaofficetoolkit.com
*.mx7.deltaofficetoolkit.com
*.ww38.deltaofficetoolkit.com
dronedelivery.in
*.dronedelivery.in
*.gitlab.dronedelivery.in
*.hostmaster.dronedelivery.in
*.m.dronedelivery.in
*.comwww.etflix.us
etflix.us
*.etflix.us
*.pipeline.etflix.us
*.prod.etflix.us
*.ww25.etflix.us
*.ww38.etflix.us
imexinternational.biz
*.imexinternational.biz
*.vnsjilfnnk.imexinternational.biz
*.ww25.imexinternational.biz
incomecalculator.in
*.incomecalculator.in
*.www.incomecalculator.in
kudapokerku.live
*.kudapokerku.live
*.ww38.kudapokerku.live
*.h0cguijddu.movilnet.store
movilnet.store
*.movilnet.store
*.niumvt7vdm.movilnet.store
mp3hup.com
*.mp3hup.com
*.parker-else.mp3hup.com
*.ww25.mp3hup.com
*.ww38.mp3hup.com
*.cpanel.ohmiginbar.com
*.cpcalendars.ohmiginbar.com
*.forum.ohmiginbar.com
*.mail.ohmiginbar.com
ohmiginbar.com
*.ohmiginbar.com
*.php.ohmiginbar.com
*.speedtest.ohmiginbar.com
*.static.ohmiginbar.com
*.test.ohmiginbar.com
*.us.ohmiginbar.com
*.webdesign.ohmiginbar.com
*.webmail.ohmiginbar.com
*.whois.ohmiginbar.com
*.wordpress.ohmiginbar.com
*.ww38.ohmiginbar.com
*.www.ohmiginbar.com
*.bbs.opensubs.org
*.dl.opensubs.org
opensubs.org
*.opensubs.org
*.remote.opensubs.org
*.ww25.opensubs.org
*.ww38.opensubs.org
oracleoftheunicorns.com
*.oracleoftheunicorns.com
*.ww25.oracleoftheunicorns.com
*.ww38.oracleoftheunicorns.com
*.admin.salmon88k.biz
*.api.salmon88k.biz
*.jenkins-beta.salmon88k.biz
salmon88k.biz
*.salmon88k.biz
*.staging.salmon88k.biz
*.www.salmon88k.biz
*.app.startupsitebuilder.com
*.backup.startupsitebuilder.com
*.dev.startupsitebuilder.com
*.mnq14f.startupsitebuilder.com
*.staging.startupsitebuilder.com
startupsitebuilder.com
*.startupsitebuilder.com
*.uat.startupsitebuilder.com
*.vpn.startupsitebuilder.com
ump.com.au
*.ump.com.au
*.ww25.ump.com.au
Other domains in certificate