Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=explorature.org
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
June 04, 2026
Valid Until
September 02, 2026
88 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
04:2D:0E:C8:9F:12:CF:DC:89:34:B3:96:DA:36:B6:72:26:A9:19:31:A6:A7:5B:11:44:9C:68:62:E1:4F:B5:45
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
explorature.org
*.explorature.org
*.admin.explorature.org
*.app.explorature.org
*.assets.explorature.org
*.demo.explorature.org
*.dev.explorature.org
*.pop3.explorature.org
*.webmail.explorature.org
antiqueappraisers.org
*.antiqueappraisers.org
*.hostmaster.antiqueappraisers.org
*.abhishek.britishinstitute.in
*.aditya.britishinstitute.in
*.ankit.britishinstitute.in
britishinstitute.in
*.britishinstitute.in
*.cpcontacts.britishinstitute.in
bulltraders.info
*.bulltraders.info
*.mx.bulltraders.info
handandcloth.org
*.handandcloth.org
*.mail.handandcloth.org
*.blsvoyy.jekah.com
jekah.com
*.jekah.com
*.a858572f-106d-4853-bdff-e5ba326ce4e3.journeyto1000000.com
*.api.journeyto1000000.com
*.app.journeyto1000000.com
*.dash.journeyto1000000.com
*.dashboard.journeyto1000000.com
*.i12mbs.journeyto1000000.com
journeyto1000000.com
*.journeyto1000000.com
*.admin.meliqtech.com
*.heraar.meliqtech.com
meliqtech.com
*.meliqtech.com
*.admin.offerfact.online
offerfact.online
*.offerfact.online
*.ww1.offerfact.online
*.www.offerfact.online
*.apps.pplelectrict.com
*.intranet.pplelectrict.com
*.ktukxsecure.pplelectrict.com
pplelectrict.com
*.pplelectrict.com
*.shop.pplelectrict.com
*.store.pplelectrict.com
*.ts.pplelectrict.com
shoetlld.store
*.shoetlld.store
*.tkk.shoetlld.store
*.corp.tlscontacte.com
tlscontacte.com
*.tlscontacte.com
*.videos.tlscontacte.com
*.visas-fr.tlscontacte.com
*.ww25.tlscontacte.com
*.ww38.tlscontacte.com
*.assets.tollfreeit.com
*.dev.tollfreeit.com
*.docs.tollfreeit.com
*.finance.tollfreeit.com
*.hostmaster.tollfreeit.com
*.mail.tollfreeit.com
*.marketing.tollfreeit.com
*.portal.tollfreeit.com
*.qa.tollfreeit.com
*.secure.tollfreeit.com
*.share.tollfreeit.com
*.stg.tollfreeit.com
tollfreeit.com
*.tollfreeit.com
*.uat.tollfreeit.com
*.vpn.tollfreeit.com
*.ww43.tollfreeit.com
*.www.tollfreeit.com
*.hostmaster.urbanfarm.us
*.m.urbanfarm.us
urbanfarm.us
*.urbanfarm.us
*.www.urbanfarm.us
*.insight.xn--h3t010i.com
*.m.xn--h3t010i.com
*.wildcard.xn--h3t010i.com
xn--h3t010i.com
*.xn--h3t010i.com
Other domains in certificate