Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=13600.gdn
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 20, 2026
Valid Until
August 18, 2026
58 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5F:03:E1:C0:16:0F:EE:DF:CE:B8:68:8C:D3:BA:42:7C:D2:60:D5:AE:A7:28:13:F6:21:C2:17:D9:8E:0A:23:97
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
vacay.cc
*.vacay.cc
*.admin.vacay.cc
*.api.vacay.cc
*.app.vacay.cc
*.assets.vacay.cc
*.blog.vacay.cc
*.demo.vacay.cc
*.dev.vacay.cc
*.m.vacay.cc
*.test.vacay.cc
*.www.vacay.cc
13600.gdn
*.13600.gdn
*.api.13600.gdn
98262ns.vip
*.98262ns.vip
*.tcb.98262ns.vip
aspirantiasacademy.in
*.aspirantiasacademy.in
capcuttemplate.co
*.capcuttemplate.co
gpt3vproffos.com
*.gpt3vproffos.com
*.sitemaps.gpt3vproffos.com
hexfest.co
*.hexfest.co
hhkk113.cc
*.hhkk113.cc
hj2024a022.top
*.hj2024a022.top
hj2024a2a0.top
*.hj2024a2a0.top
hortonlane.co
*.hortonlane.co
hotelemery.co
*.hotelemery.co
midwestwardrobe.de
*.midwestwardrobe.de
*.account.movietubenow.bz
*.archive.movietubenow.bz
*.backup.movietubenow.bz
*.bi.movietubenow.bz
*.cab6c9b4-2e55-469c-a7df-4fc0ecf54cef.movietubenow.bz
*.ci-bi.movietubenow.bz
*.crm.movietubenow.bz
*.demo.movietubenow.bz
*.dev.movietubenow.bz
*.forum.movietubenow.bz
*.home.movietubenow.bz
*.insight.movietubenow.bz
*.intranet.movietubenow.bz
*.m.movietubenow.bz
movietubenow.bz
*.movietubenow.bz
*.new.movietubenow.bz
*.news.movietubenow.bz
*.notexistsww11.movietubenow.bz
*.notexistsww25.movietubenow.bz
*.sitemap.movietubenow.bz
*.sitemaps.movietubenow.bz
*.staging.movietubenow.bz
*.wiki.movietubenow.bz
*.wildcard.movietubenow.bz
*.wqzdkvrn.movietubenow.bz
*.ww25.movietubenow.bz
*.blogspot.rocktale.com
*.hostmaster.rocktale.com
*.mail.rocktale.com
rocktale.com
*.rocktale.com
*.tumblr.rocktale.com
*.www.rocktale.com
*.katarina.splendor.in
*.smtp.splendor.in
splendor.in
*.splendor.in
toupe.co
*.toupe.co
*.ww38.toupe.co
*.home.trnponfilmizx.shop
trnponfilmizx.shop
*.trnponfilmizx.shop
*.cloud.xn--zorunlutrafiksigortas-4gd.com
*.emv1.xn--zorunlutrafiksigortas-4gd.com
*.hostmaster.xn--zorunlutrafiksigortas-4gd.com
*.remote.xn--zorunlutrafiksigortas-4gd.com
*.test.xn--zorunlutrafiksigortas-4gd.com
xn--zorunlutrafiksigortas-4gd.com
*.xn--zorunlutrafiksigortas-4gd.com
Other domains in certificate