Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=xwhimsygirlx.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 15, 2026
Valid Until
July 14, 2026
54 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
72:D1:2E:17:38:33:AC:46:CA:1F:78:6A:A9:CB:87:55:D3:20:35:2C:C3:29:73:12:53:19:15:16:78:E7:7B:44
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
myfetchasquadssupport.com
*.myfetchasquadssupport.com
*.acc.ckover.com
ckover.com
*.ckover.com
*.eu.ckover.com
*.hostmaster.ckover.com
*.ww25.ckover.com
guangtoilp.shop
*.guangtoilp.shop
gunsbet.org
*.gunsbet.org
heteroimmune.com
*.heteroimmune.com
hmblcustoms.shop
*.hmblcustoms.shop
hr-outsourcing-jobs-names-282.sbs
*.hr-outsourcing-jobs-names-282.sbs
interior-design-cyber-032.sbs
*.interior-design-cyber-032.sbs
itwsx.gdn
*.itwsx.gdn
kraken7-at.icu
*.kraken7-at.icu
kstudio-super.com
*.kstudio-super.com
kultur.life
*.kultur.life
l5vqu.cc
*.l5vqu.cc
lindagoodman.net
*.lindagoodman.net
*.ww17.lindagoodman.net
*.ww25.lindagoodman.net
*.ww38.lindagoodman.net
*.www-1.lindagoodman.net
lokicasino-se.com
*.lokicasino-se.com
makespacomponents.com
*.makespacomponents.com
mybtihomes.com
*.mybtihomes.com
neoupload.com
*.neoupload.com
propertycompliancegroup.com
*.propertycompliancegroup.com
pureklick.com
*.pureklick.com
reflectdao.com
*.reflectdao.com
renaissasee.co
*.renaissasee.co
rental-management-534489399.click
*.rental-management-534489399.click
resistiv.com
*.resistiv.com
rmxbawq324.vip
*.rmxbawq324.vip
sagars-3rd.com
*.sagars-3rd.com
savingourhistory.org
*.savingourhistory.org
search-luxary-apartments-your-city.sbs
*.search-luxary-apartments-your-city.sbs
sisog7.cfd
*.sisog7.cfd
stanfoods.net
*.stanfoods.net
stratovex.com
*.stratovex.com
supremeoak.com
*.supremeoak.com
theregenerators.co
*.theregenerators.co
throttlemotorsports.com
*.throttlemotorsports.com
trulygreenrv.com
*.trulygreenrv.com
uxlak.cc
*.uxlak.cc
vanoma.shop
*.vanoma.shop
walgj.family
*.walgj.family
*.ww25.xwhimsygirlx.com
xwhimsygirlx.com
*.xwhimsygirlx.com
yoursmnedgldkbrd.shop
*.yoursmnedgldkbrd.shop
Other domains in certificate