Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=intecofsa.co
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
June 01, 2026
Valid Until
August 30, 2026
87 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
43:E9:E7:B3:56:66:58:82:D3:B0:EA:79:6F:48:3B:1B:0B:D5:6C:A4:86:9B:63:59:CF:D0:6A:B0:7B:CB:13:06
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
grandfinity.vip
*.grandfinity.vip
*.ww25.grandfinity.vip
*.ww38.grandfinity.vip
1011.bet
*.1011.bet
*.admin.1011.bet
*.aws.1011.bet
*.blog.1011.bet
abc7chicago.co
*.abc7chicago.co
*.random.abc7chicago.co
airgo.io
*.airgo.io
amazingbazaar.shop
*.amazingbazaar.shop
*.ww25.amazingbazaar.shop
angelinasdeli.net
*.angelinasdeli.net
*.ftp.angelinasdeli.net
*.sitemaps.angelinasdeli.net
babytorrent.site
*.babytorrent.site
*.cpcalendars.babytorrent.site
*.cpcontacts.babytorrent.site
*.dash.babytorrent.site
*.mail.babytorrent.site
*.webdisk.babytorrent.site
*.webmail.babytorrent.site
*.ww25.babytorrent.site
*.www.babytorrent.site
betotalplus.it
*.betotalplus.it
*.remote.betotalplus.it
cameraaccessories.com.au
*.cameraaccessories.com.au
chikmag.com.au
*.chikmag.com.au
evolutionary.it
*.evolutionary.it
*.hostmaster.evolutionary.it
*.mail.evolutionary.it
*.notexistscrossfitworkouttraining.evolutionary.it
fastcliam.com
*.fastcliam.com
*.admin.femboy.bio
*.api.femboy.bio
femboy.bio
*.femboy.bio
*.kmabyq.femboy.bio
ferienhaus-daenemark-vejlby.de
*.ferienhaus-daenemark-vejlby.de
*.ww16.ferienhaus-daenemark-vejlby.de
fruchtwasserembolie.de
*.fruchtwasserembolie.de
*.au.garden-supplies.com.au
garden-supplies.com.au
*.garden-supplies.com.au
intecofsa.co
*.intecofsa.co
*.ww25.intecofsa.co
*.api.jitx.io
*.docs.jitx.io
jitx.io
*.jitx.io
*.app.postmasters.it
postmasters.it
*.postmasters.it
*.remote.postmasters.it
*.hostmaster.rdxhd.work
*.mail.rdxhd.work
rdxhd.work
*.rdxhd.work
*.www.rdxhd.work
refurebed.de
*.refurebed.de
refworks.de
*.refworks.de
*.admin.seductiveclothing.com
*.box.seductiveclothing.com
*.post.seductiveclothing.com
seductiveclothing.com
*.seductiveclothing.com
*.smtp.seductiveclothing.com
*.tw.seductiveclothing.com
*.ww38.seductiveclothing.com
welcomecdd.xyz
*.welcomecdd.xyz
*.ww25.welcomecdd.xyz
Other domains in certificate