Open
Cached
·
1h ago
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=motorschaden-ankauf-essen.de
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 21, 2026
Valid Until
August 19, 2026
70 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7E:1F:8D:5C:EF:BA:18:2C:FF:0F:AE:16:D0:5B:93:24:E0:36:29:27:44:F2:34:96:29:D2:06:F2:F6:35:6D:0F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
ukinfuture.com
*.ukinfuture.com
*.dev.ukinfuture.com
*.www.ukinfuture.com
10005.sbs
*.10005.sbs
*.dabaichi.10005.sbs
99991188dh2.shop
*.99991188dh2.shop
*.com.99991188dh2.shop
*.admin.antiqueautofinancing.com
antiqueautofinancing.com
*.antiqueautofinancing.com
*.cloud.antiqueautofinancing.com
*.dashs.antiqueautofinancing.com
*.m.antiqueautofinancing.com
*.rds.antiqueautofinancing.com
*.remote.antiqueautofinancing.com
*.www.antiqueautofinancing.com
bilgikilavuz.info
*.bilgikilavuz.info
*.sitemaps.bilgikilavuz.info
careerpathwayexperts.xyz
*.careerpathwayexperts.xyz
*.kwid9.careerpathwayexperts.xyz
jaw-droppingsmaple.com
*.jaw-droppingsmaple.com
*.www.jaw-droppingsmaple.com
kaynak.info
*.kaynak.info
*.www.kaynak.info
kichenette.com
*.kichenette.com
*.www.kichenette.com
ladvised.com
*.ladvised.com
*.sitemaps.ladvised.com
*.www.ladvised.com
*.inst.lookoutboxautomations.com
lookoutboxautomations.com
*.lookoutboxautomations.com
lovewolf.com
*.lovewolf.com
*.m.lovewolf.com
*.img.moeac.cc
moeac.cc
*.moeac.cc
*.www.moeac.cc
*.mail.motorschaden-ankauf-essen.de
motorschaden-ankauf-essen.de
*.motorschaden-ankauf-essen.de
myonetruestory.com
*.myonetruestory.com
*.sitemap.myonetruestory.com
*.vpn.myonetruestory.com
norwegan.de
*.norwegan.de
*.fortunedragon.oigame.buzz
*.googgle.oigame.buzz
*.googleee.oigame.buzz
*.googlle.oigame.buzz
oigame.buzz
*.oigame.buzz
*.playgoogle.oigame.buzz
poolbags.com
*.poolbags.com
*.zavala-bradley-interest.poolbags.com
*.fc94853e-ae0f-4767-9138-02d0509781a3.pully.in
*.hostmaster.pully.in
*.m.pully.in
pully.in
*.pully.in
*.up.pully.in
*.www.pully.in
*.a.spotifyoficial.info
*.api.spotifyoficial.info
*.app.spotifyoficial.info
*.dev.spotifyoficial.info
*.mail.spotifyoficial.info
*.mavjta.spotifyoficial.info
spotifyoficial.info
*.spotifyoficial.info
*.www.spotifyoficial.info
usa888s.org
*.usa888s.org
*.www.usa888s.org
*.m.xn--b1ae3aaoy.com
*.random.xn--b1ae3aaoy.com
xn--b1ae3aaoy.com
*.xn--b1ae3aaoy.com
Other domains in certificate