Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=apkmod.co
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
December 24, 2025
Valid Until
March 24, 2026
39 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
2C:80:EF:AF:B5:C8:04:EA:06:7D:50:AF:5D:A2:50:6D:5F:57:28:AD:5D:6B:34:02:8F:0E:04:7F:91:3F:E3:BA
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
escadas.com
*.escadas.com
*.ci.escadas.com
*.dev.escadas.com
*.fazer.escadas.com
*.lbrt.escadas.com
*.projetar.escadas.com
*.ww25.escadas.com
*.www.escadas.com
17brightideas.com.au
*.17brightideas.com.au
*.ww84.17brightideas.com.au
24kjewelry.com
*.24kjewelry.com
*.ww38.24kjewelry.com
amateurs.uk
*.amateurs.uk
apkmod.co
*.apkmod.co
*.cf.apkmod.co
*.powerequipment.apkmod.co
*.qa.apkmod.co
audiorecorder.co.uk
*.audiorecorder.co.uk
bandanna.co.uk
*.bandanna.co.uk
bauedeinezukunft.at
*.bauedeinezukunft.at
*.ww38.bauedeinezukunft.at
cameramart.co.uk
*.cameramart.co.uk
chandleryworld.co.uk
*.chandleryworld.co.uk
*.confirmed.crowdfundingfactory.co
crowdfundingfactory.co
*.crowdfundingfactory.co
*.np-lmb.crowdfundingfactory.co
dairyfreehampers.co.uk
*.dairyfreehampers.co.uk
deusas.bet
*.deusas.bet
dragonyarns.co.uk
*.dragonyarns.co.uk
foxgloves.co.uk
*.foxgloves.co.uk
haley.co.uk
*.haley.co.uk
*.crypto.hargabahanmaterial.com
*.electricity.hargabahanmaterial.com
hargabahanmaterial.com
*.hargabahanmaterial.com
*.insurance.hargabahanmaterial.com
*.trading.hargabahanmaterial.com
hogs.co.uk
*.hogs.co.uk
ineedalocksmith.co.uk
*.ineedalocksmith.co.uk
kymodel.com
*.kymodel.com
*.lu.kymodel.com
*.ww1.kymodel.com
*.ww25.kymodel.com
*.www.kymodel.com
mumsrus.co.uk
*.mumsrus.co.uk
myportalmedusind.com
*.myportalmedusind.com
pais.cc
*.pais.cc
*.ww25.pais.cc
restructure.co.uk
*.restructure.co.uk
*.analytics.salon-eneo.com
*.reportes.salon-eneo.com
salon-eneo.com
*.salon-eneo.com
*.set.salon-eneo.com
*.ss.salon-eneo.com
*.user.salon-eneo.com
*.hostmaster.serve.services
*.m.serve.services
*.news.serve.services
serve.services
*.serve.services
*.supabase.serve.services
*.web.serve.services
stargaze.co.uk
*.stargaze.co.uk
tristandacunha.com
*.tristandacunha.com
Other domains in certificate