Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=casinoextraspin.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 02, 2026
Valid Until
July 31, 2026
73 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C6:65:BC:E3:69:4A:78:05:92:8C:D6:ED:18:9A:3A:F3:39:85:17:25:1B:9A:D2:49:22:3E:4E:CB:14:6B:66:96
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
epicsquirt.com
*.epicsquirt.com
*.german.epicsquirt.com
*.help.epicsquirt.com
*.test1.epicsquirt.com
*.tv.epicsquirt.com
*.world.epicsquirt.com
*.ww25.epicsquirt.com
amtrackcontractor.com
*.amtrackcontractor.com
*.dev.amtrackcontractor.com
*.files.amtrackcontractor.com
applebys.com
*.applebys.com
*.neighborfeedback.applebys.com
*.neighfeedback.applebys.com
*.work.applebys.com
bidirectionally.com
*.bidirectionally.com
casinoextraspin.com
*.casinoextraspin.com
celsiuscoffeeco.com.au
*.celsiuscoffeeco.com.au
cheveu.tk
*.cheveu.tk
choni.com
*.choni.com
*.api.cjwheelrepair.com
*.autodiscover.cjwheelrepair.com
*.branches.cjwheelrepair.com
cjwheelrepair.com
*.cjwheelrepair.com
*.cpcalendars.cjwheelrepair.com
*.cpcontacts.cjwheelrepair.com
*.ftp.cjwheelrepair.com
*.m.cjwheelrepair.com
*.mail.cjwheelrepair.com
*.mta-sts.cjwheelrepair.com
*.webdisk.cjwheelrepair.com
*.wildcard.cjwheelrepair.com
*.yaleyautodiscover.cjwheelrepair.com
diorectv.com
*.diorectv.com
historiadospuntocero.com
*.historiadospuntocero.com
*.random.historiadospuntocero.com
*.ww25.historiadospuntocero.com
*.hostmaster.jubzu.com
jubzu.com
*.jubzu.com
*.ww.jubzu.com
*.ww25.jubzu.com
*.www.jubzu.com
manosmexicanas.com
*.manosmexicanas.com
*.webmail.manosmexicanas.com
mmsub.xyz
*.mmsub.xyz
*.ww16.mmsub.xyz
*.ww25.mmsub.xyz
newcastlenews.com.au
*.newcastlenews.com.au
onboardingcafe.com
*.onboardingcafe.com
*.539cefdc-2a27-450d-8628-d3de6096aa47.phonescan.io
*.admin.phonescan.io
*.api.phonescan.io
*.app.phonescan.io
*.assets.phonescan.io
*.demo.phonescan.io
*.dev.phonescan.io
*.f1e96648-da18-416d-973f-56d0fb7fa5c8.phonescan.io
*.nifwwassets.phonescan.io
phonescan.io
*.phonescan.io
*.test.phonescan.io
*.education.questdiagnostiics.com
*.mobile.questdiagnostiics.com
questdiagnostiics.com
*.questdiagnostiics.com
*.ru.questdiagnostiics.com
*.soft.questdiagnostiics.com
*.ww25.questdiagnostiics.com
reacto.co
*.reacto.co
slink-nagoya.com
*.slink-nagoya.com
usmoneyreserves.com
*.usmoneyreserves.com
Other domains in certificate