Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=smapdeal.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 02, 2026
Valid Until
May 03, 2026
77 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C0:DB:0C:9F:DF:63:9B:37:A1:EF:D0:8A:D2:6C:C3:33:CE:58:C0:CD:5F:54:E9:B1:0B:1A:EE:B9:3D:F2:50:E8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
hjry.com
*.hjry.com
*.owa.hjry.com
*.ww1.hjry.com
04r1h6.shop
*.04r1h6.shop
07576.net
*.07576.net
166229.pizza
*.166229.pizza
39228.mobi
*.39228.mobi
54185.net
*.54185.net
63xpay.com
*.63xpay.com
*.demo.63xpay.com
83427.co
*.83427.co
84442.co
*.84442.co
86620.net
*.86620.net
88395.co
*.88395.co
92371.net
*.92371.net
99627.net
*.99627.net
cb1b7kw9.top
*.cb1b7kw9.top
coinmax303.xyz
*.coinmax303.xyz
electricmobilitypoint.com
*.electricmobilitypoint.com
ew1d3tot.top
*.ew1d3tot.top
featherpated.com
*.featherpated.com
five-guys-menu-with-prices.com
*.five-guys-menu-with-prices.com
gstguj.com
*.gstguj.com
karibe.com
*.karibe.com
*.smtp.karibe.com
*.sslvpn.karibe.com
mesfilms.net
*.mesfilms.net
nwia7mh.cyou
*.nwia7mh.cyou
nzulw5.shop
*.nzulw5.shop
o3mini.net
*.o3mini.net
o81r09.shop
*.o81r09.shop
otides.com
*.otides.com
overturf.com
*.overturf.com
*.ww1.overturf.com
*.home.paymentcard.org
paymentcard.org
*.paymentcard.org
phygital.day
*.phygital.day
pierse.com
*.pierse.com
*.b.reindl.com
reindl.com
*.reindl.com
revenuenomad-team.com
*.revenuenomad-team.com
*.msitepreprod.smapdeal.com
smapdeal.com
*.smapdeal.com
*.appetit.studiobox.xyz
*.appoint.studiobox.xyz
*.ba.studiobox.xyz
*.cravel.studiobox.xyz
*.fns.studiobox.xyz
*.intake.studiobox.xyz
studiobox.xyz
*.studiobox.xyz
*.ww25.studiobox.xyz
*.blog.sweettoothcakes.com
sweettoothcakes.com
*.sweettoothcakes.com
*.ts.sweettoothcakes.com
Other domains in certificate