Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=clientaiq.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 15, 2026
Valid Until
August 13, 2026
83 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F0:44:52:CA:92:CF:97:2E:C8:4B:76:98:25:D6:87:6E:F0:7E:55:5E:7A:E4:AC:49:1E:DC:0D:27:6F:68:3D:4F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
dtzb.cc
*.dtzb.cc
clientaiq.com
*.clientaiq.com
clientaq.com
*.clientaq.com
cottontailgummies.com
*.cottontailgummies.com
dccjbhajbchicfgagabi.site
*.dccjbhajbchicfgagabi.site
deimicheli.com
*.deimicheli.com
domaintransfer.com.au
*.domaintransfer.com.au
doritoscooloriginal.com
*.doritoscooloriginal.com
dornium.com
*.dornium.com
doyleelectricincapplytojob.com
*.doyleelectricincapplytojob.com
dphehd.co
*.dphehd.co
dqxyer.shop
*.dqxyer.shop
drkeyworld.com
*.drkeyworld.com
dropvid.co
*.dropvid.co
dzmcjzpc83.world
*.dzmcjzpc83.world
factortable.com
*.factortable.com
fair-mam.com
*.fair-mam.com
fair-tam.com
*.fair-tam.com
*.dash.greenbaygourmet.com
greenbaygourmet.com
*.greenbaygourmet.com
qyfdbvn8569dvbbv.top
*.qyfdbvn8569dvbbv.top
rastelshelf.store
*.rastelshelf.store
reallybestporn.com
*.reallybestporn.com
restaurantsopenonthanksgiving.site
*.restaurantsopenonthanksgiving.site
roofing-service-99.click
*.roofing-service-99.click
saaviwk.site
*.saaviwk.site
salvomoroni.com
*.salvomoroni.com
sarcoact.com
*.sarcoact.com
savigny-sur-orge.com
*.savigny-sur-orge.com
seieki.store
*.seieki.store
shebalux.store
*.shebalux.store
shopblooms.com
*.shopblooms.com
shopforclearance.store
*.shopforclearance.store
skbxiu.store
*.skbxiu.store
skyviewmag.com
*.skyviewmag.com
solar-panel-0q4g1i9g6t1.sbs
*.solar-panel-0q4g1i9g6t1.sbs
spiritualdreams.store
*.spiritualdreams.store
spooktaculargummies.com
*.spooktaculargummies.com
vckaccounting.site
*.vckaccounting.site
veloursartist.com
*.veloursartist.com
vintagecoupon.info
*.vintagecoupon.info
vippackages.xyz
*.vippackages.xyz
webdesigncrew.org
*.webdesigncrew.org
webdesks.com
*.webdesks.com
westernprecision.com
*.westernprecision.com
Other domains in certificate