Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=ayushmancarddownload.online
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 21, 2026
Valid Until
July 20, 2026
53 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BC:8E:FB:B8:FA:5B:2A:B3:6A:BD:57:3E:2C:BC:07:4B:3A:46:5F:CA:17:D7:1F:CD:DC:41:91:C6:FB:0B:19:40
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
ezhookups.eu
*.ezhookups.eu
antoineandstanley.com
*.antoineandstanley.com
*.random.antoineandstanley.com
ayushmancarddownload.online
*.ayushmancarddownload.online
bakertilly.group
*.bakertilly.group
bestfeedsource.com
*.bestfeedsource.com
*.m.bestfeedsource.com
cloud-private.site
*.cloud-private.site
*.6441056b613c32a9.dewventure.com
dewventure.com
*.dewventure.com
divisordetensao.online
*.divisordetensao.online
eyeandmore.de
*.eyeandmore.de
fepzks.pl
*.fepzks.pl
friendofgardener.eu
*.friendofgardener.eu
gospodarstwostajkowski.pl
*.gospodarstwostajkowski.pl
kae-shop.fr
*.kae-shop.fr
*.5c7ea917c771.litecoin-miner.cc
*.68ae4afd-c495-401c-ab37-2d1bea284181.litecoin-miner.cc
*.aad8eacabb24.litecoin-miner.cc
*.autoconfig.litecoin-miner.cc
*.cpanel.litecoin-miner.cc
*.jvtcimail.litecoin-miner.cc
litecoin-miner.cc
*.litecoin-miner.cc
*.mail.litecoin-miner.cc
*.sitemap.litecoin-miner.cc
*.sitemaps.litecoin-miner.cc
*.whm.litecoin-miner.cc
*.ww1.litecoin-miner.cc
*.ww2.litecoin-miner.cc
*.ww25.litecoin-miner.cc
*.ww3.litecoin-miner.cc
*.ww38.litecoin-miner.cc
*.www.litecoin-miner.cc
*.wwww.litecoin-miner.cc
m4su.online
*.m4su.online
macvar2932.live
*.macvar2932.live
nb-tomsk.store
*.nb-tomsk.store
nimotv.live
*.nimotv.live
*.cl1.ons3xer.com
*.demo.ons3xer.com
*.m.ons3xer.com
ons3xer.com
*.ons3xer.com
*.sitemap.ons3xer.com
*.sitemaps.ons3xer.com
*.ww1.ons3xer.com
*.www.ons3xer.com
pi-shop.online
*.pi-shop.online
protechpick.tech
*.protechpick.tech
rillinjapan.fr
*.rillinjapan.fr
rowerywisla.pl
*.rowerywisla.pl
rtpbomjitu.space
*.rtpbomjitu.space
score1000.online
*.score1000.online
*.affiliate.seo-man.biz
*.cashback.seo-man.biz
seo-man.biz
*.seo-man.biz
starokatolicy.pl
*.starokatolicy.pl
swiftvibes.online
*.swiftvibes.online
szydelkowenoski.pl
*.szydelkowenoski.pl
wwwsceneplus.ca
*.wwwsceneplus.ca
Other domains in certificate