Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=vedioone.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 24, 2026
Valid Until
July 23, 2026
39 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D9:2B:DF:B1:96:3F:BC:FE:A9:85:48:53:57:AF:C8:55:96:3D:88:CB:97:C5:03:22:39:CA:52:FE:54:C2:B8:AB
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
instagrahm.com
*.instagrahm.com
*.help.instagrahm.com
*.mx.instagrahm.com
*.staging.instagrahm.com
*.wzww.instagrahm.com
forum-islam.org
*.forum-islam.org
*.ww25.forum-islam.org
*.ww38.forum-islam.org
*.www.forum-islam.org
freshaireuv.co
*.freshaireuv.co
*.new.freshaireuv.co
*.rd.freshaireuv.co
*.ww38.freshaireuv.co
*.email.greencentive.com
*.facebook.greencentive.com
*.forum.greencentive.com
*.foto.greencentive.com
*.game.greencentive.com
greencentive.com
*.greencentive.com
*.service.greencentive.com
*.users.greencentive.com
*.webmail.greencentive.com
*.ww25.greencentive.com
immobiliarefirenze.it
*.immobiliarefirenze.it
*.jar.kelw.com
kelw.com
*.kelw.com
*.q.kelw.com
*.notexistscs.potenziali.it
*.notexistsstaging.potenziali.it
potenziali.it
*.potenziali.it
*.remote.potenziali.it
*.staging.potenziali.it
qkqk4.xyz
*.qkqk4.xyz
*.ww38.qkqk4.xyz
*.random.saveolemiss.com
saveolemiss.com
*.saveolemiss.com
*.social.saveolemiss.com
*.ww16.saveolemiss.com
*.1webbearch.searchitwell.info
*.agent.searchitwell.info
*.com.searchitwell.info
*.flow.searchitwell.info
*.prod.searchitwell.info
searchitwell.info
*.searchitwell.info
*.websearch.searchitwell.info
sinarbron.com
*.sinarbron.com
*.ww38.sinarbron.com
*.ildcard.storagelocker.com.au
storagelocker.com.au
*.storagelocker.com.au
*.ww25.storagelocker.com.au
tisock.com
*.tisock.com
*.ww25.tisock.com
truelovehealthcareservices.com
*.truelovehealthcareservices.com
*.vpn.truelovehealthcareservices.com
*.email.vedioone.com
vedioone.com
*.vedioone.com
*.ww25.vedioone.com
*.dj.vikas.net
vikas.net
*.vikas.net
*.ww16.vikas.net
*.girls.xmsmon.com
*.jiaru.xmsmon.com
*.joinus.xmsmon.com
*.oppoapi.xmsmon.com
*.ww25.xmsmon.com
xmsmon.com
*.xmsmon.com
*.xn--www-xl6e00row2a.xmsmon.com
*.xn--www-z69e.xmsmon.com
*.admin.yxret.ws
*.www.yxret.ws
yxret.ws
*.yxret.ws
Other domains in certificate