Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=thor.host
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 14, 2026
Valid Until
July 13, 2026
55 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9E:AC:50:8E:2B:5F:FF:F2:3D:DA:40:65:AD:EB:85:CB:EB:46:C1:09:73:FC:3F:C3:52:AD:CD:BA:FD:75:01:97
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
freediver.it
*.freediver.it
*.admin.freediver.it
*.app.freediver.it
*.backend.freediver.it
*.dashboard.freediver.it
*.demo.freediver.it
*.hostmaster.freediver.it
*.intelligence.freediver.it
*.staging.freediver.it
*.supersets.freediver.it
*.visual.freediver.it
*.www.freediver.it
beerland.com
*.beerland.com
*.beerspa.beerland.com
*.ww20.beerland.com
*.ww25.beerland.com
*.admin.estrenos.it
*.app.estrenos.it
*.demo.estrenos.it
*.dev.estrenos.it
estrenos.it
*.estrenos.it
*.out.estrenos.it
*.superset.estrenos.it
*.supersets.estrenos.it
*.www.estrenos.it
hemblecreations.com
*.hemblecreations.com
*.homemalpha.hemblecreations.com
*.ws.hemblecreations.com
*.wss.hemblecreations.com
icaslotwin.club
*.icaslotwin.club
*.www6.icaslotwin.club
khatrimaza.in
*.khatrimaza.in
*.notexistsww38.khatrimaza.in
*.o.khatrimaza.in
merodesk.com
*.merodesk.com
*.webmail.merodesk.com
*.8d5b0c58-22f3-4165-a580-c9570d1edd5f.nifi.in
*.dp.nifi.in
*.forinmanwastheoftoisso---xbf.nifi.in
*.hostmaster.nifi.in
*.ic.nifi.in
*.manwastheoftoisso---xbf.nifi.in
nifi.in
*.nifi.in
*.ofoftheforinmanwastheoftoisso---xbf.nifi.in
*.omw.nifi.in
*.privilegiis.nifi.in
*.toofoftheforinmanwastheoftoisso---xbf.nifi.in
*.www.nifi.in
officialgiveaways.com
*.officialgiveaways.com
*.vendors.officialgiveaways.com
*.civoh.plantgrowthpath.xyz
*.fdy0p.plantgrowthpath.xyz
*.kp5po.plantgrowthpath.xyz
*.ks0v9.plantgrowthpath.xyz
*.l2aa8.plantgrowthpath.xyz
*.lkzdx.plantgrowthpath.xyz
*.osldc.plantgrowthpath.xyz
plantgrowthpath.xyz
*.plantgrowthpath.xyz
*.rustore.plantgrowthpath.xyz
*.zl1z8.plantgrowthpath.xyz
*.crm.qtrendom.com
qtrendom.com
*.qtrendom.com
*.test1.qtrendom.com
*.test2.qtrendom.com
*.test3.qtrendom.com
*.authorization-server.rajaslotoxpgsoft.skin
rajaslotoxpgsoft.skin
*.rajaslotoxpgsoft.skin
*.demo.reachfetchasquads.com
reachfetchasquads.com
*.reachfetchasquads.com
*.rustore.satu38slotgacor.irish
satu38slotgacor.irish
*.satu38slotgacor.irish
*.server.thor.host
thor.host
*.thor.host
*.truenohost.thor.host
Other domains in certificate