Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=wetravel.life
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 01, 2026
Valid Until
May 02, 2026
79 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5E:90:6D:F1:9B:10:72:03:96:FA:83:AE:42:29:3E:C8:FB:C0:0B:DB:58:60:9C:99:FA:DB:76:9C:50:B2:CA:8D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
fun-88-ko.com
*.fun-88-ko.com
25086.vip
*.25086.vip
35792.mobi
*.35792.mobi
3wc2fpdq.top
*.3wc2fpdq.top
60016073.top
*.60016073.top
63m2.cc
*.63m2.cc
666640.locker
*.666640.locker
70638828.top
*.70638828.top
71529.mobi
*.71529.mobi
87419226.top
*.87419226.top
87558aap.vip
*.87558aap.vip
8b3pqd7m.top
*.8b3pqd7m.top
963jwm301.top
*.963jwm301.top
970yhj301.top
*.970yhj301.top
99395.locker
*.99395.locker
aisports.bet
*.aisports.bet
aus-priz.info
*.aus-priz.info
ben04.bet
*.ben04.bet
bespoke-engagement-796406917.click
*.bespoke-engagement-796406917.click
bgain.in
*.bgain.in
bmt44.top
*.bmt44.top
buspriority.org
*.buspriority.org
chinaapartmentguide.com
*.chinaapartmentguide.com
chivaco.com
*.chivaco.com
christensen-benefitsgroup.net
*.christensen-benefitsgroup.net
ciolyssp.biz
*.ciolyssp.biz
ckkfg5p06ai.top
*.ckkfg5p06ai.top
covestors.com
*.covestors.com
csjrw.bid
*.csjrw.bid
customtests.com
*.customtests.com
dcg5j97y.top
*.dcg5j97y.top
dentvpn.com
*.dentvpn.com
digitals.app
*.digitals.app
dn364.top
*.dn364.top
drowsypoet.com
*.drowsypoet.com
dtrbv.pro
*.dtrbv.pro
dz38.top
*.dz38.top
eatwellmagazine.com
*.eatwellmagazine.com
ez879.top
*.ez879.top
faisaltutorials.com
*.faisaltutorials.com
gamegpt.games
*.gamegpt.games
play-vanguard-faction.xyz
*.play-vanguard-faction.xyz
timoteus.net
*.timoteus.net
warrendatabreacsettlement.com
*.warrendatabreacsettlement.com
wetravel.life
*.wetravel.life
Other domains in certificate