Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=playcastpavilion.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 11, 2026
Valid Until
August 09, 2026
63 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
14:14:D4:2B:6C:F9:5D:36:CC:AB:DD:36:16:50:CF:34:C7:05:5E:72:1A:B5:A6:D7:DB:3A:7B:6D:2F:06:3B:BE
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
skillguard.org
*.skillguard.org
*.app.skillguard.org
33464.co
*.33464.co
59844k.com
*.59844k.com
59844v.com
*.59844v.com
59844z.com
*.59844z.com
66web18.cc
*.66web18.cc
91197.cc
*.91197.cc
arka.cc
*.arka.cc
*.6aq.dianxiaoxt.cn
*.bwa.dianxiaoxt.cn
dianxiaoxt.cn
*.dianxiaoxt.cn
*.dqm.dianxiaoxt.cn
*.iun.dianxiaoxt.cn
*.opg.dianxiaoxt.cn
dns555.top
*.dns555.top
eliteshippingxpress.com
*.eliteshippingxpress.com
evertreensolutions.com
*.evertreensolutions.com
exptconnect.com
*.exptconnect.com
exptlabs.com
*.exptlabs.com
eyebrow-hair-78.click
*.eyebrow-hair-78.click
eyebrow-hair-transplant-78.click
*.eyebrow-hair-transplant-78.click
fabulousfisherman.com
*.fabulousfisherman.com
facial-revitalization-327653702.click
*.facial-revitalization-327653702.click
fitnessstrategyhub.club
*.fitnessstrategyhub.club
fmdczp.loan
*.fmdczp.loan
getsamusa.com
*.getsamusa.com
*.www.getsamusa.com
ghosthinge.com
*.ghosthinge.com
gohqalliancedigital.com
*.gohqalliancedigital.com
groundgym.com
*.groundgym.com
growthadvisorsonline.co
*.growthadvisorsonline.co
hklandmacau.app
*.hklandmacau.app
*.app.in7inity.network
in7inity.network
*.in7inity.network
*.staging.in7inity.network
*.test.in7inity.network
*.uflidv2.in7inity.network
kxhs11.cn
*.kxhs11.cn
llhcq.loan
*.llhcq.loan
lllnd.com
*.lllnd.com
milano.one
*.milano.one
myhqalliancezen.com
*.myhqalliancezen.com
mysamrenewal.com
*.mysamrenewal.com
playcastpavilion.com
*.playcastpavilion.com
qmedg2.cn
*.qmedg2.cn
qvotz.loan
*.qvotz.loan
reklamite.com
*.reklamite.com
stresslesseducation.com
*.stresslesseducation.com
wealthgrowthexpress.com
*.wealthgrowthexpress.com
Other domains in certificate