Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=swaflix.xyz
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 22, 2026
Valid Until
July 21, 2026
69 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5C:E8:31:60:62:19:37:92:40:AF:69:8C:71:88:00:6A:2F:40:31:3C:08:FE:52:FE:0F:19:D5:6D:0D:EA:E2:96
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
check.organic
*.check.organic
*.api.check.organic
*.members.check.organic
315123.xyz
*.315123.xyz
*.ftp.315123.xyz
a165fhxy.top
*.a165fhxy.top
*.abc.a165fhxy.top
*.pkrme.a165fhxy.top
benakabbharstachar.com
*.benakabbharstachar.com
*.news.benakabbharstachar.com
domainsolutions.org
*.domainsolutions.org
*.vpn1.domainsolutions.org
*.gitlab.magnified.life
magnified.life
*.magnified.life
*.mx.magnified.life
mysteries.it.com
*.mysteries.it.com
*.v53p.mysteries.it.com
*.763.nationaltraumaconsortium.org
*.ana.nationaltraumaconsortium.org
*.archive.nationaltraumaconsortium.org
*.arkansas.nationaltraumaconsortium.org
*.fatfao.nationaltraumaconsortium.org
*.homebase.nationaltraumaconsortium.org
*.ifa.nationaltraumaconsortium.org
*.maru.nationaltraumaconsortium.org
nationaltraumaconsortium.org
*.nationaltraumaconsortium.org
*.onva.nationaltraumaconsortium.org
*.pc7.nationaltraumaconsortium.org
*.phpbalancer.nationaltraumaconsortium.org
*.secure.nationaltraumaconsortium.org
*.us.nationaltraumaconsortium.org
*.wins.nationaltraumaconsortium.org
*.www.nationaltraumaconsortium.org
*.xepher.nationaltraumaconsortium.org
*.aa-32186.starbucks.cc
*.account.starbucks.cc
*.acquisition.starbucks.cc
*.airbnb-request-home.starbucks.cc
*.app.starbucks.cc
*.cn.starbucks.cc
*.commerce.starbucks.cc
*.devel.starbucks.cc
*.m.starbucks.cc
*.scmdev.starbucks.cc
starbucks.cc
*.starbucks.cc
*.wfmnapimst.starbucks.cc
*.ww25.starbucks.cc
*.ww38.starbucks.cc
*.a.sunsetdistrict.net
*.analytics.sunsetdistrict.net
*.api.sunsetdistrict.net
*.backend.sunsetdistrict.net
*.community.sunsetdistrict.net
*.flows.sunsetdistrict.net
*.ios.sunsetdistrict.net
*.mta-sts.sunsetdistrict.net
*.random.sunsetdistrict.net
sunsetdistrict.net
*.sunsetdistrict.net
*.webmail.sunsetdistrict.net
*.api.swaflix.xyz
*.baoflix.swaflix.xyz
*.gd.swaflix.xyz
*.gdrive.swaflix.xyz
*.swafcoddpayfootballoddtips.swaflix.xyz
swaflix.xyz
*.swaflix.xyz
*.url.swaflix.xyz
*.urllink.swaflix.xyz
*.vip.swaflix.xyz
*.ww38.swaflix.xyz
*.10ww.tailieutienganh.net
tailieutienganh.net
*.tailieutienganh.net
*.ww16.tailieutienganh.net
*.ww17.tailieutienganh.net
*.ww25.tailieutienganh.net
*.ww38.tailieutienganh.net
wish-u.live
*.wish-u.live
*.www.wish-u.live
Other domains in certificate