Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=matage.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 07, 2026
Valid Until
May 08, 2026
72 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
AF:D6:3D:08:AB:75:C9:1A:B8:58:36:A9:7D:D5:B7:6C:E4:F5:B9:E8:F0:AB:06:2B:F0:1A:03:60:25:52:C6:4F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
fbcg.live
*.fbcg.live
*.store.fbcg.live
*.www.fbcg.live
*.38.44yydstxt234.com
44yydstxt234.com
*.44yydstxt234.com
*.ww.44yydstxt234.com
*.ww38.44yydstxt234.com
aktuelleangebote.store
*.aktuelleangebote.store
bbbuilding.tech
*.bbbuilding.tech
bmwusa.co
*.bmwusa.co
*.configure.bmwusa.co
*.random.bmwusa.co
buddytoken.com
*.buddytoken.com
egern.com
*.egern.com
*.vpn.egern.com
egov-kz.online
*.egov-kz.online
historyofmotorsport.com.au
*.historyofmotorsport.com.au
hodip.website
*.hodip.website
*.cpcalendars.instantdstore.store
instantdstore.store
*.instantdstore.store
iwhpnoysfv.net
*.iwhpnoysfv.net
*.amla.matage.com
matage.com
*.matage.com
*.wildcard.matage.com
*.ww38.matage.com
*.cdn-01.megaupload.is
*.cdn-02.megaupload.is
*.cdn-04.megaupload.is
*.cdn-06.megaupload.is
*.cdn-07.megaupload.is
*.cdn-10.megaupload.is
*.cdn-11.megaupload.is
*.cdn-15.megaupload.is
*.cdn-16.megaupload.is
*.cdn-17.megaupload.is
*.cdn-19.megaupload.is
*.cdn-22.megaupload.is
*.cdn-23.megaupload.is
*.cdn-24.megaupload.is
*.cdn-25.megaupload.is
*.cdn-26.megaupload.is
*.cdn-31.megaupload.is
*.cdn-32.megaupload.is
*.cdn-34.megaupload.is
*.cdn-35.megaupload.is
*.mail.megaupload.is
megaupload.is
*.megaupload.is
*.ww25.megaupload.is
*.ww38.megaupload.is
modismo.com
*.modismo.com
*.rds1.modismo.com
*.ww25.modismo.com
privatedark.com
*.privatedark.com
*.www.privatedark.com
rbxlstudio.store
*.rbxlstudio.store
*.ww16.rbxlstudio.store
*.cloud.stichler.com
*.ecp.stichler.com
*.exch.stichler.com
*.mail06.stichler.com
*.mail3.stichler.com
*.securemail.stichler.com
stichler.com
*.stichler.com
*.vpn.stichler.com
*.ww38.stichler.com
theeats.com
*.theeats.com
*.ww1.theeats.com
*.ww38.theeats.com
*.community.westplains.org
westplains.org
*.westplains.org
Other domains in certificate