Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=airlinerebate.com
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
June 19, 2026
Valid Until
September 17, 2026
82 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
94:DF:C4:E7:46:B9:28:25:D8:91:51:43:0C:C1:BE:61:3B:3A:8D:1B:60:D2:02:37:FD:2A:94:B3:4B:2B:F2:F6
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
worldmangas.com
*.worldmangas.com
airlinerebate.com
*.airlinerebate.com
*.webmail.airlinerebate.com
amathjewelry.com
*.amathjewelry.com
autoaccidentgroup.com
*.autoaccidentgroup.com
brothrr.com
*.brothrr.com
bzebza.com
*.bzebza.com
cairolithium.com
*.cairolithium.com
ccnalabs.com
*.ccnalabs.com
cdrtdadsat.vip
*.cdrtdadsat.vip
chazzanut.org
*.chazzanut.org
cityhuge.com
*.cityhuge.com
cjtacticalsupply.com
*.cjtacticalsupply.com
claritydecisionhub.click
*.claritydecisionhub.click
coinww.cc
*.coinww.cc
collectnascar.com
*.collectnascar.com
craftedbydiy.live
*.craftedbydiy.live
crunchlife.com
*.crunchlife.com
da-nomadgames-02518.xyz
*.da-nomadgames-02518.xyz
daeie.loan
*.daeie.loan
dailyflowandbalancecenter.sbs
*.dailyflowandbalancecenter.sbs
dana.in
*.dana.in
datastormers.com
*.datastormers.com
dqbip.loan
*.dqbip.loan
dulcetcare.com
*.dulcetcare.com
fitnessverdict.run
*.fitnessverdict.run
givemeadvice.com
*.givemeadvice.com
governmentintegrityproject.org
*.governmentintegrityproject.org
immigra-tion.com
*.immigra-tion.com
immigrationia.com
*.immigrationia.com
immigrationo.com
*.immigrationo.com
immobilienauktion.net
*.immobilienauktion.net
immobilienauktionen.info
*.immobilienauktionen.info
immobiliencoach.info
*.immobiliencoach.info
immobiliencoach.net
*.immobiliencoach.net
junevarieties.com
*.junevarieties.com
koenime.com
*.koenime.com
lovekode4d.com
*.lovekode4d.com
mabel459.sbs
*.mabel459.sbs
teaxplorer.com
*.teaxplorer.com
tel2na.me
*.tel2na.me
toursri.com
*.toursri.com
toysdeals.com
*.toysdeals.com
*.webmail.toysdeals.com
unation.xyz
*.unation.xyz
wehaox.com
*.wehaox.com
Other domains in certificate