Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=2131.win
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 11, 2026
Valid Until
August 09, 2026
70 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
62:F2:CB:19:1E:0E:8B:13:44:C5:07:C2:77:C8:80:CE:85:07:FF:9A:E0:D0:BB:F3:1C:95:03:35:14:57:30:0C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
femlittext.click
*.femlittext.click
1xbetmyanmar.online
*.1xbetmyanmar.online
2131.win
*.2131.win
*.www.2131.win
789bet12.com
*.789bet12.com
*.wildcard.789bet12.com
applycardsbyworld.com
*.applycardsbyworld.com
audiencesyncnetwork2.com
*.audiencesyncnetwork2.com
*.go.audiencesyncnetwork2.com
contabilidad.tk
*.contabilidad.tk
*.tkwww.contabilidad.tk
*.ww25.contabilidad.tk
*.ww38.contabilidad.tk
farsuperiorspeaker.com
*.farsuperiorspeaker.com
fdaargentina.org
*.fdaargentina.org
*.ww12.fdaargentina.org
*.ww7.fdaargentina.org
impero.solutions
*.impero.solutions
*.m.impero.solutions
*.mx.impero.solutions
janessajewelry.com
*.janessajewelry.com
*.test.janessajewelry.com
*.0a3df92e-bf14-44da-90d1-a7e8cb4907be.letsgoonchain.com
*.49605e3.letsgoonchain.com
*.51fd6a61-29e4-4941-ba5c-3a42b12d6854.letsgoonchain.com
*.8374f2b3-f6bf-422e-8d57-d1db249605e3.letsgoonchain.com
*.api.letsgoonchain.com
*.fcf22c12-dc04-4eee-b6c0-5d81ca5c9331.letsgoonchain.com
letsgoonchain.com
*.letsgoonchain.com
*.vpn.letsgoonchain.com
*.www.letsgoonchain.com
*.edu.misis.com
*.img1-fg.misis.com
*.mc.misis.com
misis.com
*.misis.com
*.mosaicfertilizantes.misis.com
*.ni.misis.com
*.olymp.misis.com
*.science.misis.com
*.sf.misis.com
*.visiontest.misis.com
*.ww25.misis.com
muathegiare.com
*.muathegiare.com
*.ww38.muathegiare.com
murzanilov.sbs
*.murzanilov.sbs
pksjitu.bet
*.pksjitu.bet
*.preview.pksjitu.bet
*.vpce-001ab6fc30455502d-n7imtaaq-sa-ew.pksjitu.bet
*.www.pksjitu.bet
*.api.radi.pet
radi.pet
*.radi.pet
registrodeimoveisgoias.com.br
*.registrodeimoveisgoias.com.br
*.ww25.registrodeimoveisgoias.com.br
*.www.registrodeimoveisgoias.com.br
ressona.com
*.ressona.com
*.anywhere.rmglobalconsulting.com
*.cloud.rmglobalconsulting.com
*.connect.rmglobalconsulting.com
*.firewall.rmglobalconsulting.com
*.mail.rmglobalconsulting.com
*.owa.rmglobalconsulting.com
rmglobalconsulting.com
*.rmglobalconsulting.com
*.ssl.rmglobalconsulting.com
*.webconnect.rmglobalconsulting.com
*.random.stan.tours
stan.tours
*.stan.tours
yuti.org
*.yuti.org
Other domains in certificate