Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=sightbulb.com
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
June 05, 2026
Valid Until
September 03, 2026
86 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
40:3F:9B:C3:48:91:7D:04:F4:61:D9:C8:E4:4E:FF:5C:F2:C2:55:37:97:15:1F:4E:76:F9:BF:4D:F4:EC:0B:DF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
donair.co
*.donair.co
*.m.donair.co
86e915.xyz
*.86e915.xyz
*.api.86e915.xyz
*.d.86e915.xyz
chrstushealth.org
*.chrstushealth.org
*.members.chrstushealth.org
*.pos.chrstushealth.org
*.ww16.chrstushealth.org
*.ww25.chrstushealth.org
escolasdomusbrasilis.com.br
*.escolasdomusbrasilis.com.br
*.random.escolasdomusbrasilis.com.br
*.ww16.escolasdomusbrasilis.com.br
*.carousell-hk.footly.shop
footly.shop
*.footly.shop
*.intranet.footly.shop
*.shop.footly.shop
*.www.footly.shop
*.autodiscover.gardenvillas.it
*.cpanel.gardenvillas.it
gardenvillas.it
*.gardenvillas.it
*.mx.gardenvillas.it
*.smtp.gardenvillas.it
*.www.gardenvillas.it
*.aba.himagni.com
*.ajj.himagni.com
*.cht.himagni.com
*.cipiz.himagni.com
*.daj.himagni.com
*.dnh.himagni.com
*.dyh.himagni.com
*.exp.himagni.com
*.hcp.himagni.com
himagni.com
*.himagni.com
*.kyc.himagni.com
*.link.himagni.com
*.ljp.himagni.com
*.mag.himagni.com
*.map.himagni.com
*.mbb.himagni.com
*.mcd.himagni.com
*.mcn.himagni.com
*.msd.himagni.com
*.muhu.himagni.com
*.new.himagni.com
*.oftdf.himagni.com
*.pvp.himagni.com
*.rcact.himagni.com
*.rnh.himagni.com
*.sld.himagni.com
*.sucoe.himagni.com
*.talk.himagni.com
*.tizur.himagni.com
*.tjh.himagni.com
*.vul.himagni.com
*.wsq.himagni.com
*.wyj.himagni.com
*.xcb.himagni.com
*.xqbpr.himagni.com
*.ypk.himagni.com
*.zjt.himagni.com
lojistikpyrz.xyz
*.lojistikpyrz.xyz
*.ww38.lojistikpyrz.xyz
play-flame-rift.xyz
*.play-flame-rift.xyz
*.ww38.play-flame-rift.xyz
shah4u.net
*.shah4u.net
*.get.sightbulb.com
*.random.sightbulb.com
sightbulb.com
*.sightbulb.com
*.www.sightbulb.com
tvparapobres.xyz
*.tvparapobres.xyz
*.ww38.tvparapobres.xyz
tzsp.xyz
*.tzsp.xyz
*.ww38.tzsp.xyz
webcheck.xyz
*.webcheck.xyz
*.ww38.webcheck.xyz
Other domains in certificate