Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=defelix.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 29, 2026
Valid Until
July 28, 2026
67 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F2:DF:39:3D:16:5C:F5:A4:97:AA:36:93:B2:71:1F:EA:91:4F:15:3C:55:8C:4B:1F:F0:9E:76:94:CE:92:E6:76
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
homesearch.org.uk
*.homesearch.org.uk
*.sourhqark.homesearch.org.uk
*.southwark.homesearch.org.uk
099ld.com
*.099ld.com
*.jykl.099ld.com
*.zyua.099ld.com
1nternetgrandma.com
*.1nternetgrandma.com
*.msitemaps.1nternetgrandma.com
*.sitemaps.1nternetgrandma.com
*.vpn.1nternetgrandma.com
*.ww1.1nternetgrandma.com
*.ww12.1nternetgrandma.com
*.ww7.1nternetgrandma.com
*.ww99.1nternetgrandma.com
aqm.uk
*.aqm.uk
*.qmul.aqm.uk
*.6a030449-5fff-41e3-a1b3-39d915d74326.boosttrading.us
*.admin.boosttrading.us
*.api.boosttrading.us
*.app.boosttrading.us
*.assets.boosttrading.us
boosttrading.us
*.boosttrading.us
*.demo.boosttrading.us
*.dev.boosttrading.us
*.test.boosttrading.us
defelix.com
*.defelix.com
*.forums.defelix.com
*.harmony.defelix.com
*.hostmaster.defelix.com
*.rustore.defelix.com
*.sitemap.defelix.com
*.sitemaps.defelix.com
*.ww1.defelix.com
*.ww16.defelix.com
*.ww17.defelix.com
*.ww5.defelix.com
*.autodiscover.europeanmanagement.it
*.cpcalendars.europeanmanagement.it
*.cpcontacts.europeanmanagement.it
europeanmanagement.it
*.europeanmanagement.it
*.hostmaster.europeanmanagement.it
*.mail.europeanmanagement.it
*.webdisk.europeanmanagement.it
*.webmail.europeanmanagement.it
frescobathrooms.co.uk
*.frescobathrooms.co.uk
lisettes.com
*.lisettes.com
*.mail.lisettes.com
*.mx.lisettes.com
*.oneclick.lisettes.com
*.gaming-laptop-gta-5-fivem.nexusnet.cfd
*.genshin-impact-yanfei-upgrade.nexusnet.cfd
*.nelwyn-doherty.nexusnet.cfd
nexusnet.cfd
*.nexusnet.cfd
*.tatiana-kolovou-youtube.nexusnet.cfd
*.what-is-the-750-cash-app-thing.nexusnet.cfd
*.4948c557-8d11-4cf9-94e8-7d40de4c649c.trybios.com
*.9c3e9d6b-28a2-4ec0-b319-abcc7df16b7d.trybios.com
*.a.trybios.com
*.assets.trybios.com
*.cloud.trybios.com
*.dev.trybios.com
*.hexmtrds.trybios.com
*.mail.trybios.com
*.qwknqadmin.trybios.com
*.rd.trybios.com
*.rds.trybios.com
*.rdweb.trybios.com
*.remote.trybios.com
*.test.trybios.com
trybios.com
*.trybios.com
*.vpn.trybios.com
*.www.trybios.com
*.au.winagames.com
*.blog.winagames.com
*.de.winagames.com
*.news.winagames.com
*.se.winagames.com
winagames.com
*.winagames.com
Other domains in certificate