Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=shouldibuythattoy.com
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
June 16, 2026
Valid Until
September 14, 2026
80 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
41:A4:F2:35:7A:F1:A8:C1:CA:71:DE:4F:D5:21:61:7B:A1:2D:B3:A5:78:01:FB:2F:50:5A:4A:79:D5:57:1A:8B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
digskool.com
*.digskool.com
*.tiktok.digskool.com
6ab8rpt.top
*.6ab8rpt.top
*.j2zfz.6ab8rpt.top
*.ndifg.6ab8rpt.top
*.nslow.6ab8rpt.top
*.o1ghs.6ab8rpt.top
*.o7p4x.6ab8rpt.top
*.orrwv.6ab8rpt.top
*.y04uw.6ab8rpt.top
amoryuri.com
*.amoryuri.com
*.universox.amoryuri.com
*.ww38.amoryuri.com
*.www.amoryuri.com
*.941jx1.an99.melbourne
an99.melbourne
*.an99.melbourne
*.api.an99.melbourne
*.app.an99.melbourne
*.autodiscover.an99.melbourne
*.c51c4853-ad07-47e0-b706-69ab972833d7.an99.melbourne
*.demo.an99.melbourne
*.docs.an99.melbourne
*.intranet.an99.melbourne
*.mail.an99.melbourne
*.members.an99.melbourne
*.sharepoint.an99.melbourne
*.staging.an99.melbourne
*.test.an99.melbourne
autoelitepick.com
*.autoelitepick.com
*.dev.autoelitepick.com
*.m.autoelitepick.com
*.staging.autoelitepick.com
*.test.autoelitepick.com
*.aging.bodymindbright.online
*.app.bodymindbright.online
*.apps.bodymindbright.online
bodymindbright.online
*.bodymindbright.online
*.members.bodymindbright.online
*.staging.bodymindbright.online
*.test.bodymindbright.online
drinkprime.store
*.drinkprime.store
*.dev.ensestporno.click
ensestporno.click
*.ensestporno.click
*.members.ensestporno.click
*.server.ensestporno.click
*.staging.ensestporno.click
fogaobrazuca-oficial.shop
*.fogaobrazuca-oficial.shop
*.sitemaps.fogaobrazuca-oficial.shop
inoriginal.space
*.inoriginal.space
latestlwaks.co
*.latestlwaks.co
latestvapes.co
*.latestvapes.co
*.admin.moenygram.com
*.btyy6mxl6aea24uh.moenygram.com
moenygram.com
*.moenygram.com
*.b5hyr.ownthisweb.xyz
ownthisweb.xyz
*.ownthisweb.xyz
pelesexpeded.space
*.pelesexpeded.space
*.news.shouldibuythattoy.com
shouldibuythattoy.com
*.shouldibuythattoy.com
*.ww38.shouldibuythattoy.com
*.api.streetsavings.app
*.app.streetsavings.app
*.mail.streetsavings.app
*.rustore.streetsavings.app
streetsavings.app
*.streetsavings.app
*.test.streetsavings.app
thesolesorcerer.co.uk
*.thesolesorcerer.co.uk
tiger-supplies-forms.co.uk
*.tiger-supplies-forms.co.uk
*.secure.yujiegao.com
yujiegao.com
*.yujiegao.com
Other domains in certificate