Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=cringe.wtf
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
June 04, 2026
Valid Until
September 02, 2026
83 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3C:95:4A:A0:72:7A:78:53:75:6C:ED:3B:D3:7E:B3:2F:47:4C:99:1D:2F:AB:52:71:8B:D8:9E:60:5C:7D:2F:19
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
fujirico.com
*.fujirico.com
*.7xzdnc.fujirico.com
*.admin.fujirico.com
*.api.fujirico.com
*.app.fujirico.com
*.backup.fujirico.com
*.demo.fujirico.com
*.remote.fujirico.com
*.sfpumadmin.fujirico.com
*.staging.fujirico.com
*.uat.fujirico.com
*.vpn.fujirico.com
*.wtyon7xzdnc.fujirico.com
*.www.fujirico.com
24h.works
*.24h.works
*.ww1.24h.works
488069.top
*.488069.top
*.api.488069.top
*.dashboard.488069.top
*.docs.488069.top
*.mailer.488069.top
*.marketing.488069.top
*.public.488069.top
*.qa.488069.top
*.staging.488069.top
*.test.488069.top
*.uat.488069.top
*.web.488069.top
behind.tv
*.behind.tv
*.mural.behind.tv
*.pictures.behind.tv
benigncommunications.com
*.benigncommunications.com
*.dev.benigncommunications.com
*.finance.benigncommunications.com
*.hostmaster.benigncommunications.com
*.www.benigncommunications.com
bodyboardershawaii.com
*.bodyboardershawaii.com
*.dan.bodyboardershawaii.com
*.random.bodyboardershawaii.com
bullets.it
*.bullets.it
calisma.it
*.calisma.it
cinamana.com
*.cinamana.com
*.lolwww.cinamana.com
*.stats.cinamana.com
*.admin.cringe.wtf
*.api.cringe.wtf
*.app.cringe.wtf
*.assets.cringe.wtf
*.blog.cringe.wtf
cringe.wtf
*.cringe.wtf
*.demo.cringe.wtf
*.dev.cringe.wtf
*.dev1redash.cringe.wtf
*.hostmaster.cringe.wtf
*.melissa.cringe.wtf
*.qa.cringe.wtf
*.redash.cringe.wtf
*.ssh.cringe.wtf
*.stg.cringe.wtf
*.web.cringe.wtf
*.www.cringe.wtf
*.z4jzt1.cringe.wtf
perguntaserespostas.net
*.perguntaserespostas.net
*.www.perguntaserespostas.net
*.api.shifted.wtf
*.app.shifted.wtf
*.backup.shifted.wtf
*.bot.shifted.wtf
*.dashboard.shifted.wtf
*.dev.shifted.wtf
*.mail.shifted.wtf
*.marketing.shifted.wtf
*.new.shifted.wtf
*.qa.shifted.wtf
shifted.wtf
*.shifted.wtf
*.staging.shifted.wtf
*.www.shifted.wtf
Other domains in certificate