Open
Cached
·
just now
79/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=doomnia.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 04, 2026
Valid Until
May 05, 2026
78 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8F:05:6A:B3:AF:19:E0:AA:CC:A4:D8:28:95:41:26:45:46:CA:1D:2C:BD:39:C1:D4:BD:E1:0B:5A:A9:9C:CA:2B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
devilcoolice.com
*.devilcoolice.com
dailydefai.com
*.dailydefai.com
dating-cl1.click
*.dating-cl1.click
diarisabadell.com
*.diarisabadell.com
digitalfuturetop.com
*.digitalfuturetop.com
digitalmaximus.com
*.digitalmaximus.com
direct-tech.com
*.direct-tech.com
domainfinance.xyz
*.domainfinance.xyz
donrsupport.co
*.donrsupport.co
doomnia.com
*.doomnia.com
dpi.xxx
*.dpi.xxx
e5465080.vip
*.e5465080.vip
eind.it
*.eind.it
envios-br.site
*.envios-br.site
eyewx.net
*.eyewx.net
feverwallet.com
*.feverwallet.com
financity.co
*.financity.co
fitnessjoypulse.run
*.fitnessjoypulse.run
foamfratstudio.com
*.foamfratstudio.com
foodcooking.it
*.foodcooking.it
foodfighter.it
*.foodfighter.it
fvlob2dfkrjw.cc
*.fvlob2dfkrjw.cc
galaxyaspirenexus.my
*.galaxyaspirenexus.my
gembokemas.my
*.gembokemas.my
gioielliepoca.it
*.gioielliepoca.it
grabonline.cn
*.grabonline.cn
greengrowthglam.live
*.greengrowthglam.live
guilefulness.com
*.guilefulness.com
gwuzgwuz8h.com
*.gwuzgwuz8h.com
gyfob.loan
*.gyfob.loan
gymnotokous.com
*.gymnotokous.com
gyx33.top
*.gyx33.top
h18k8ewg.top
*.h18k8ewg.top
h2gd7gym.top
*.h2gd7gym.top
h53rx1p.cyou
*.h53rx1p.cyou
h5hfjo75.top
*.h5hfjo75.top
h93kdq2d.top
*.h93kdq2d.top
habibaonlineshop.com
*.habibaonlineshop.com
hacersati.xyz
*.hacersati.xyz
hair-transplant-788249721.click
*.hair-transplant-788249721.click
hallidayglasses.com
*.hallidayglasses.com
hamilthare.club
*.hamilthare.club
handskar.it
*.handskar.it
newgenerationclub.it
*.newgenerationclub.it
newzly.homes
*.newzly.homes
Other domains in certificate