Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=premiumvpsmax.net
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 11, 2026
Valid Until
May 12, 2026
87 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
81:0C:55:E5:7A:4B:05:ED:67:A5:27:04:20:04:0B:08:49:B7:9F:2A:88:C4:BD:D5:84:42:18:63:32:5E:F0:C2
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
finger.live
*.finger.live
*.bisonpal.finger.live
*.mbbpal.finger.live
*.pal.finger.live
*.ratcliffpal.finger.live
5th.it
*.5th.it
*.api.5th.it
*.research.5th.it
acepadelacademy.com
*.acepadelacademy.com
*.mail.acepadelacademy.com
antiasmatico.com
*.antiasmatico.com
*.backend.antiasmatico.com
*.blog.antiasmatico.com
atcto5.it
*.atcto5.it
*.dx6gu.atcto5.it
*.iz4jq.atcto5.it
*.yw1un.atcto5.it
betsilin499.com
*.betsilin499.com
*.adfs.brocchi.com
brocchi.com
*.brocchi.com
*.com.brocchi.com
*.my.brocchi.com
*.rdgateway.brocchi.com
*.rds-corp.brocchi.com
*.ts01.brocchi.com
cakeapp.co
*.cakeapp.co
*.ww25.cakeapp.co
calculatemortgage.it
*.calculatemortgage.it
*.exchange.calculatemortgage.it
*.staging.calculatemortgage.it
farris.it
*.farris.it
*.insights.farris.it
*.demo.giftedgifts.com
giftedgifts.com
*.giftedgifts.com
*.sitemap.giftedgifts.com
*.app.klammheimlich.shop
*.da.klammheimlich.shop
*.en.klammheimlich.shop
*.es.klammheimlich.shop
*.fr.klammheimlich.shop
*.id.klammheimlich.shop
klammheimlich.shop
*.klammheimlich.shop
*.nl.klammheimlich.shop
*.pt.klammheimlich.shop
*.sitemap.klammheimlich.shop
*.sv.klammheimlich.shop
*.ww25.klammheimlich.shop
*.ww38.klammheimlich.shop
*.www.klammheimlich.shop
lowestautoinsurancerates.biz
*.lowestautoinsurancerates.biz
*.www.lowestautoinsurancerates.biz
myntlgbs.com
*.myntlgbs.com
*.admin.painreliefjoint.com
*.app.painreliefjoint.com
*.hostmaster.painreliefjoint.com
*.m.painreliefjoint.com
*.mx.painreliefjoint.com
painreliefjoint.com
*.painreliefjoint.com
premiumvpsmax.net
*.premiumvpsmax.net
*.free.queen4b.com
*.kylie.queen4b.com
*.picture.queen4b.com
queen4b.com
*.queen4b.com
*.a8641c82-da7a-48f6-831c-4df7d0d6f377.rrrrkk.buzz
*.hostmaster.rrrrkk.buzz
rrrrkk.buzz
*.rrrrkk.buzz
*.mail.seksoo.com
seksoo.com
*.seksoo.com
vinthots.com
*.vinthots.com
*.ww38.vinthots.com
Other domains in certificate