Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=xoyr.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 05, 2026
Valid Until
July 04, 2026
31 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4C:B6:1A:96:6D:C0:68:63:71:91:2C:FC:4B:FD:4F:51:CB:E0:9B:EB:58:53:81:D9:AB:BD:66:4C:6C:D6:0C:9A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
dove-cameron.com
*.dove-cameron.com
*.comwww.dove-cameron.com
*.mta-sts.dove-cameron.com
44400.bet
*.44400.bet
44422.bet
*.44422.bet
auctionblitz.com.au
*.auctionblitz.com.au
*.webmail.auctionblitz.com.au
c8b8632554.com
*.c8b8632554.com
*.ww38.c8b8632554.com
cjfusion.com
*.cjfusion.com
*.dashboard.cjfusion.com
*.images.cjfusion.com
*.mobil.cjfusion.com
*.reporting.cjfusion.com
*.sip.cjfusion.com
*.superset.cjfusion.com
*.test.cjfusion.com
*.ww38.cjfusion.com
*.www.cjfusion.com
*.0b34bcad-f42e-4ed2-a53f-a7f0fb290299.ck444game.autos
*.5d59428c-a1b2-4aa3-aac8-48396ceb5e66.ck444game.autos
*.76f794e4-9cba-46a3-ba04-e2625087dbcf.ck444game.autos
*.admin.ck444game.autos
*.af342ef3-9844-482b-94ed-dfcc95fa63ed.ck444game.autos
*.api.ck444game.autos
*.app.ck444game.autos
*.assets.ck444game.autos
ck444game.autos
*.ck444game.autos
*.d99e0f95-769b-49a5-9491-0df331e73aac.ck444game.autos
*.demo.ck444game.autos
*.dev.ck444game.autos
*.hostmaster.ck444game.autos
*.intranet.ck444game.autos
*.mail.ck444game.autos
*.mohovstape.ck444game.autos
*.stape.ck444game.autos
*.test.ck444game.autos
cramersuniform.com
*.cramersuniform.com
*.ww16.cramersuniform.com
*.ww25.cramersuniform.com
downhousing-assistance-payment.website
*.downhousing-assistance-payment.website
*.ww17.downhousing-assistance-payment.website
*.ww25.downhousing-assistance-payment.website
kasihmarketing3.click
*.kasihmarketing3.click
*.ww38.kasihmarketing3.click
*.gp.minervatrust.com
minervatrust.com
*.minervatrust.com
*.sitemap.minervatrust.com
*.sslvpn.minervatrust.com
*.vpn.minervatrust.com
*.www.minervatrust.com
rackingsystems.co.uk
*.rackingsystems.co.uk
*.ww25.rackingsystems.co.uk
*.m.sekabet1128.com
sekabet1128.com
*.sekabet1128.com
*.ww25.sekabet1128.com
*.ww38.sekabet1128.com
singhkeymaker.online
*.singhkeymaker.online
*.02c5fe47-0923-4662-9b4b-c6762490bf83.townofberkleymass.us
*.admin.townofberkleymass.us
*.assets.townofberkleymass.us
*.stage.townofberkleymass.us
*.test.townofberkleymass.us
townofberkleymass.us
*.townofberkleymass.us
*.hostmaster.watertreatments.it
watertreatments.it
*.watertreatments.it
wrizzledit.com
*.wrizzledit.com
*.jmk.xoyr.com
*.wildcard.xoyr.com
*.ww25.xoyr.com
xoyr.com
*.xoyr.com
Other domains in certificate