Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=orbitgaze-core.xyz
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 14, 2026
Valid Until
August 12, 2026
86 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
79:03:1B:18:2A:6B:55:24:61:55:65:D1:11:70:1E:2A:A5:A0:F3:96:87:A3:67:28:BB:46:99:4F:CA:BF:1A:F1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
alnaqlon.com
*.alnaqlon.com
*.6387a3f0-f4ac-4191-a550-a3a090e9139c.alnaqlon.com
*.carton.alnaqlon.com
*.cpcalendars.alnaqlon.com
*.dhl.alnaqlon.com
*.ecwid-apps.alnaqlon.com
*.express.alnaqlon.com
*.fortivpn.alnaqlon.com
*.globalprotect.alnaqlon.com
*.gp.alnaqlon.com
*.labs.alnaqlon.com
*.playground.alnaqlon.com
*.secureaccess.alnaqlon.com
*.testing.alnaqlon.com
*.us-vpn.alnaqlon.com
8x8tm8x.com
*.8x8tm8x.com
*.s.8x8tm8x.com
*.ww16.8x8tm8x.com
*.ww38.8x8tm8x.com
bankofamwerica.com
*.bankofamwerica.com
*.myhealth.bankofamwerica.com
*.ww16.bankofamwerica.com
bepecaser.org
*.bepecaser.org
*.hostmaster.bepecaser.org
*.www.bepecaser.org
cncoracredit.com
*.cncoracredit.com
escondidohyundai.com
*.escondidohyundai.com
*.ww38.escondidohyundai.com
hotpotato.com.au
*.hotpotato.com.au
*.ww17.hotpotato.com.au
*.ww38.hotpotato.com.au
janbazan-store.com
*.janbazan-store.com
*.labor.janbazan-store.com
*.ns1.janbazan-store.com
*.pay.janbazan-store.com
*.pwa.janbazan-store.com
*.pwa2.janbazan-store.com
*.statics.janbazan-store.com
*.dev.meat18.com
*.hkwww.meat18.com
*.kregjig.meat18.com
meat18.com
*.meat18.com
*.ww25.meat18.com
*.autodiscover.nausea.com.au
nausea.com.au
*.nausea.com.au
*.random.nausea.com.au
*.webdisk.nausea.com.au
nylon-seduction.com
*.nylon-seduction.com
*.random.nylon-seduction.com
*.nemln.orbitgaze-core.xyz
orbitgaze-core.xyz
*.orbitgaze-core.xyz
*.wsct4.orbitgaze-core.xyz
*.api.paintingperformanceworks.digital
*.backup.paintingperformanceworks.digital
*.dev.paintingperformanceworks.digital
*.members.paintingperformanceworks.digital
paintingperformanceworks.digital
*.paintingperformanceworks.digital
*.ruhx66.paintingperformanceworks.digital
*.shop.paintingperformanceworks.digital
*.uat.paintingperformanceworks.digital
*.webmail.paintingperformanceworks.digital
*.dzjt.seacoastaa.com
*.education.seacoastaa.com
*.hc.seacoastaa.com
*.info.seacoastaa.com
*.pilsnet.seacoastaa.com
*.rgfn.seacoastaa.com
seacoastaa.com
*.seacoastaa.com
*.sfbw.seacoastaa.com
*.test.seacoastaa.com
*.ww38.seacoastaa.com
*.dkhp1l.smellscapes.click
smellscapes.click
*.smellscapes.click
woodengates.au
*.woodengates.au
Other domains in certificate