Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=lastminutecruises.in
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
June 04, 2026
Valid Until
September 02, 2026
69 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0C:CC:DF:C5:57:D9:1F:64:59:38:BE:55:EC:7D:42:26:C0:07:D6:D3:1B:18:E7:7F:DB:E7:2D:70:63:A7:77:14
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
oceanfm.io
*.oceanfm.io
*.bot.oceanfm.io
*.dev.oceanfm.io
*.stg-www.oceanfm.io
*.test.oceanfm.io
*.admin.capitalsherpafund.biz
*.api.capitalsherpafund.biz
*.app.capitalsherpafund.biz
*.assets.capitalsherpafund.biz
*.backoffice.capitalsherpafund.biz
*.cabinet.capitalsherpafund.biz
capitalsherpafund.biz
*.capitalsherpafund.biz
*.client.capitalsherpafund.biz
*.demo.capitalsherpafund.biz
*.dev.capitalsherpafund.biz
*.fquhmdemo.capitalsherpafund.biz
*.g1fcwh.capitalsherpafund.biz
*.lakgoapi.capitalsherpafund.biz
*.mail.capitalsherpafund.biz
*.test.capitalsherpafund.biz
*.vr22qt.capitalsherpafund.biz
*.www.capitalsherpafund.biz
econigent.com
*.econigent.com
*.y3cg1s.econigent.com
*.in.injoy.in
injoy.in
*.injoy.in
*.m.injoy.in
*.sitemaps.injoy.in
*.un.injoy.in
*.wildcard.injoy.in
*.hostmaster.lastminutecruises.in
lastminutecruises.in
*.lastminutecruises.in
*.m.lastminutecruises.in
*.remote.lastminutecruises.in
*.superset.lastminutecruises.in
*.www.lastminutecruises.in
*.api.navispherecarriers.com
*.app.navispherecarriers.com
*.demo.navispherecarriers.com
*.dev.navispherecarriers.com
*.forum.navispherecarriers.com
*.home.navispherecarriers.com
*.m.navispherecarriers.com
*.magento.navispherecarriers.com
*.mail.navispherecarriers.com
*.mobile.navispherecarriers.com
navispherecarriers.com
*.navispherecarriers.com
*.old.navispherecarriers.com
*.remote.navispherecarriers.com
*.shop.navispherecarriers.com
*.staging.navispherecarriers.com
*.std-airflow.navispherecarriers.com
*.sw.navispherecarriers.com
*.test.navispherecarriers.com
*.wap.navispherecarriers.com
*.web.navispherecarriers.com
*.webdisk.navispherecarriers.com
*.wildcard.navispherecarriers.com
*.ww01.navispherecarriers.com
*.www.navispherecarriers.com
*.app.nexow.xyz
*.b5hyr.nexow.xyz
*.bb2b2a1a-cae1-42cc-b0d3-638076c2f7d5.nexow.xyz
*.c6udy.nexow.xyz
*.c80e021c-62fa-4110-b3bb-0443cad9a1b8.nexow.xyz
*.cc2mm.nexow.xyz
*.cuyk.nexow.xyz
*.cxie3.nexow.xyz
*.ebwif.nexow.xyz
*.eu3rm.nexow.xyz
*.he00g.nexow.xyz
*.ip4i2.nexow.xyz
nexow.xyz
*.nexow.xyz
*.sso.nexow.xyz
*.wsct4.nexow.xyz
*.xbh6h.nexow.xyz
*.y04uw.nexow.xyz
*.yhue2.nexow.xyz
*.zyu43.nexow.xyz
*.mail.pimi.io
pimi.io
*.pimi.io
*.www.pimi.io
Other domains in certificate