Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=fnym.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 23, 2026
Valid Until
August 21, 2026
88 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
EC:B2:4F:C0:CB:4B:F0:40:81:4E:AB:60:BD:3C:07:7B:4C:F3:96:FC:1B:04:F3:AA:DB:EF:47:72:37:43:FA:40
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
88 domains
gols.live
*.gols.live
*.ww25.gols.live
2222939xx5.shop
*.2222939xx5.shop
*.com.2222939xx5.shop
*.bi.bidnow.it
bidnow.it
*.bidnow.it
*.hlkngwordpress.bidnow.it
*.relay.bidnow.it
*.superset.bidnow.it
*.www.bidnow.it
*.6y8gt.dfw6m2v4bm.xyz
*.cnfr9.dfw6m2v4bm.xyz
dfw6m2v4bm.xyz
*.dfw6m2v4bm.xyz
*.g22y8.dfw6m2v4bm.xyz
*.l2aa8.dfw6m2v4bm.xyz
*.qk6fu.dfw6m2v4bm.xyz
*.tzygd.dfw6m2v4bm.xyz
felinecartel.co
*.felinecartel.co
fnym.com
*.fnym.com
*.k.fnym.com
*.mx1.fnym.com
*.sq.fnym.com
*.w.fnym.com
*.xv.fnym.com
*.yb.fnym.com
hackaut.club
*.hackaut.club
htelcheck.de
*.htelcheck.de
*.random.htelcheck.de
illedge.com
*.illedge.com
*.mer.illedge.com
indukos.cyou
*.indukos.cyou
rentmy.au
*.rentmy.au
*.ww25.rentmy.au
rodi.live
*.rodi.live
*.random.softtennis-kanto2021-ibaraki.info
softtennis-kanto2021-ibaraki.info
*.softtennis-kanto2021-ibaraki.info
*.2f6ab828-e282-4427-b0a9-0a1efcd3650d.soniarox.es
*.admin.soniarox.es
*.analytic.soniarox.es
*.analytics.soniarox.es
*.api.soniarox.es
*.app.soniarox.es
*.bi.soniarox.es
*.dash.soniarox.es
*.dashboard.soniarox.es
*.demo.soniarox.es
*.dev.soniarox.es
*.dev1redash.soniarox.es
*.ftp.soniarox.es
*.intelligence.soniarox.es
*.intranet.soniarox.es
*.new.soniarox.es
*.portal.soniarox.es
*.redash.soniarox.es
*.reporting.soniarox.es
*.shop.soniarox.es
soniarox.es
*.soniarox.es
*.staging.soniarox.es
*.store.soniarox.es
*.superset.soniarox.es
*.webmail.soniarox.es
*.www.soniarox.es
*.admin.vetu.it
*.analyze.vetu.it
*.app.vetu.it
*.dash.vetu.it
*.dashs.vetu.it
*.data.vetu.it
vetu.it
*.vetu.it
watchbreakingbad.co
*.watchbreakingbad.co
*.ww16.watchbreakingbad.co
*.ww25.watchbreakingbad.co
Other domains in certificate