Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=mediusa.co
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 14, 2026
Valid Until
August 12, 2026
67 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BF:FD:01:CA:4E:03:BF:7A:4E:DD:E7:8A:82:BB:E0:CE:92:CF:FF:85:05:BC:2D:57:D4:19:14:BE:08:B1:1F:B9
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
buckstar.coffee
*.buckstar.coffee
*.new.buckstar.coffee
307cc.net
*.307cc.net
animeflv.social
*.animeflv.social
*.0u12d.bcddff.xyz
*.1357513.bcddff.xyz
*.6994028.bcddff.xyz
*.6y8gt.bcddff.xyz
*.89wkp.bcddff.xyz
*.9408234.bcddff.xyz
*.96c54.bcddff.xyz
bcddff.xyz
*.bcddff.xyz
*.civoh.bcddff.xyz
*.d.bcddff.xyz
*.new.bcddff.xyz
*.pqubscivoh.bcddff.xyz
*.x7pal.bcddff.xyz
*.y04uw.bcddff.xyz
crestdrive.co
*.crestdrive.co
cyber-galaxyhub.quest
*.cyber-galaxyhub.quest
day-trips-952321181.click
*.day-trips-952321181.click
fish4thefuture.com
*.fish4thefuture.com
*.3299bb82.g709qik.top
g709qik.top
*.g709qik.top
hosted.au
*.hosted.au
londonelectronicmusicevent.com
*.londonelectronicmusicevent.com
*.cfaa9791-0bc4-4fc2-bd40-7fb89ddc29da.mediusa.co
*.cpanel.mediusa.co
*.ftp.mediusa.co
*.m.mediusa.co
*.mail.mediusa.co
mediusa.co
*.mediusa.co
*.owa.mediusa.co
*.pop.mediusa.co
*.smtp.mediusa.co
*.testing.mediusa.co
*.webdisk.mediusa.co
*.webmail.mediusa.co
*.whm.mediusa.co
*.hostmaster.musician.pro
musician.pro
*.musician.pro
*.test.musician.pro
*.website.musician.pro
*.api.nexiasqetrnia.com
nexiasqetrnia.com
*.nexiasqetrnia.com
*.sitemap.nexiasqetrnia.com
saveonmyelectricitybill.com
*.saveonmyelectricitybill.com
*.bh.tep.it
*.cl.tep.it
*.dashboard.tep.it
*.euro.tep.it
*.euros.tep.it
*.file-maps.tep.it
*.hostmaster.tep.it
*.info.tep.it
*.owa.tep.it
*.portal.tep.it
*.pr.tep.it
*.rds.tep.it
*.reporting.tep.it
*.reports.tep.it
*.rigv.tep.it
*.srigv.tep.it
tep.it
*.tep.it
*.test.tep.it
*.visual.tep.it
*.wwe.tep.it
*.www.tep.it
timers.org
*.timers.org
*.o.zyzwhl.cn
*.y.zyzwhl.cn
zyzwhl.cn
*.zyzwhl.cn
Other domains in certificate