Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=selcuksportshd131.xyz
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 24, 2026
Valid Until
April 24, 2026
69 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
2A:0F:E8:42:5F:97:F2:47:64:70:B2:06:96:95:CE:28:4A:22:C1:14:71:8D:67:E1:3A:57:34:70:5C:AE:10:52
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
capitalons.com
*.capitalons.com
alieldein.com
*.alieldein.com
*.webmail.alieldein.com
andrroid.com
*.andrroid.com
arizonadepartmentofrevenue.com
*.arizonadepartmentofrevenue.com
*.ww16.arizonadepartmentofrevenue.com
*.ww25.arizonadepartmentofrevenue.com
babycastillo.live
*.babycastillo.live
biznow.space
*.biznow.space
*.kapow-escapists-2.biznow.space
*.nespay-nestle-paperless-pay.biznow.space
capifalone.com
*.capifalone.com
capitalkne.com
*.capitalkne.com
capitwlone.com
*.capitwlone.com
msmfzd.co.in
*.msmfzd.co.in
commercialgenerator797554.icu
*.commercialgenerator797554.icu
cwpitalone.com
*.cwpitalone.com
efirstbak.com
*.efirstbak.com
*.admin.exxonmobilgiftcard.co
exxonmobilgiftcard.co
*.exxonmobilgiftcard.co
*.mta-sts.exxonmobilgiftcard.co
*.portal.exxonmobilgiftcard.co
*.34.fund8.site
*.afu.fund8.site
*.authsmtp.fund8.site
*.barracuda.fund8.site
fund8.site
*.fund8.site
*.gate.fund8.site
*.pop.fund8.site
*.server1.fund8.site
*.x80.fund8.site
*.xxnt.fund8.site
*.yh4.fund8.site
hotelliquidatorusa.com
*.hotelliquidatorusa.com
lasercuttingwelding325282.icu
*.lasercuttingwelding325282.icu
lejitv.pro
*.lejitv.pro
*.xn--0110-2-g37ik38ixv3f78d.lejitv.pro
*.xn--0421-2-g37ik38ixv3f78d.lejitv.pro
*.xn--1027-2-g37ik38ixv3f78d.lejitv.pro
*.xn--1112-1-g37ik38ixv3f78d.lejitv.pro
*.xn--1201-1-g37ik38ixv3f78d.lejitv.pro
midtownfashionsny.com
*.midtownfashionsny.com
naturallandtreks.com
*.naturallandtreks.com
onemainffinancial.com
*.onemainffinancial.com
onemainfinanccial.com
*.onemainfinanccial.com
onemainfinanciial.com
*.onemainfinanciial.com
*.ggg.pandora.nu
*.kannous.pandora.nu
pandora.nu
*.pandora.nu
plywood.net
*.plywood.net
progreswive.com
*.progreswive.com
samuelnarteygeorge.com
*.samuelnarteygeorge.com
*.d.selcuksportshd131.xyz
*.rustore.selcuksportshd131.xyz
selcuksportshd131.xyz
*.selcuksportshd131.xyz
*.ww12.selcuksportshd131.xyz
*.ww25.selcuksportshd131.xyz
*.ww38.selcuksportshd131.xyz
travelerd.com
*.travelerd.com
zarzar.fr
*.zarzar.fr
Other domains in certificate