Open
Cached
·
just now
79/100
SECURITY SCORE
Certificate Information
Subject
CN=mega-winst-nl.top
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 29, 2026
Valid Until
April 29, 2026
79 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0B:8A:39:AF:9F:04:51:4B:96:EC:0F:A1:A8:81:84:95:92:2F:6A:AC:73:3D:5C:EE:9E:D5:19:A3:DE:91:7C:C2
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
omnisolid.com
*.omnisolid.com
mega-winst-nl.top
*.mega-winst-nl.top
melbetclubhouse.com
*.melbetclubhouse.com
melbetsurge.com
*.melbetsurge.com
melbetyardstick.com
*.melbetyardstick.com
menusifuhq.com
*.menusifuhq.com
menusifusite.com
*.menusifusite.com
momopoker168.com
*.momopoker168.com
mortgageprofessionalsacademy.com
*.mortgageprofessionalsacademy.com
mp3face.com
*.mp3face.com
newsmora.com
*.newsmora.com
nomoredolls.com
*.nomoredolls.com
onecallawaycounseling.com
*.onecallawaycounseling.com
onedaypost.com
*.onedaypost.com
osoul-sucess.one
*.osoul-sucess.one
pairdock.com
*.pairdock.com
pelisnetwork.com
*.pelisnetwork.com
pgwede66.org
*.pgwede66.org
portalconexaobr.com
*.portalconexaobr.com
purgeapp.com
*.purgeapp.com
questz.com
*.questz.com
radikalnews.com
*.radikalnews.com
rambhavanserial.net
*.rambhavanserial.net
realweblogics.com
*.realweblogics.com
researchftheaeurdeep.com
*.researchftheaeurdeep.com
rickybsburger.com
*.rickybsburger.com
ritaoratour2025.com
*.ritaoratour2025.com
rockestar.com
*.rockestar.com
roma33slot.com
*.roma33slot.com
royalbetx.com
*.royalbetx.com
satoaepcloud.com
*.satoaepcloud.com
securitycompany-california-pango.click
*.securitycompany-california-pango.click
sellthishousefast.com
*.sellthishousefast.com
servicegeeni-team.com
*.servicegeeni-team.com
servicegeeniapp.com
*.servicegeeniapp.com
servicegeenicrew.com
*.servicegeenicrew.com
servicegeenihq.com
*.servicegeenihq.com
servicegeenisite.com
*.servicegeenisite.com
servicegeeniteam.com
*.servicegeeniteam.com
sizzlespark.com
*.sizzlespark.com
toucancomputing.com
*.toucancomputing.com
tradebasebathroomsgroup.com
*.tradebasebathroomsgroup.com
tsunyotakohet.com
*.tsunyotakohet.com
tutorialshock.com
*.tutorialshock.com
verygoodsearch.com
*.verygoodsearch.com
Other domains in certificate