Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=magictrack1.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 11, 2026
Valid Until
August 09, 2026
48 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E7:99:4D:7A:D7:85:1C:ED:50:B3:9E:FB:67:07:F4:FF:13:EF:74:7E:FA:F9:64:CA:0C:09:B7:29:4C:CA:A6:8E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
65 domains
dotrfi.com
*.dotrfi.com
*.hostmaster.dotrfi.com
chevrotain.com
*.chevrotain.com
*.hostmaster.chevrotain.com
*.api.commercialdevelopment.com.au
commercialdevelopment.com.au
*.commercialdevelopment.com.au
*.emv1.commercialdevelopment.com.au
consumer-proposal.com
*.consumer-proposal.com
*.random.consumer-proposal.com
coupang.au
*.coupang.au
*.random.coupang.au
*.ww25.coupang.au
*.ww38.coupang.au
gerrans.com
*.gerrans.com
*.k.gerrans.com
heels-seduction.com
*.heels-seduction.com
*.www.heels-seduction.com
kaja.pro
*.kaja.pro
*.ww25.kaja.pro
lesnie.com
*.lesnie.com
*.m.lesnie.com
magictrack1.com
*.magictrack1.com
*.dan.md5.name
*.hostmaster.md5.name
md5.name
*.md5.name
*.alpha.mediacomwebmail.com
*.beta.mediacomwebmail.com
*.biz.mediacomwebmail.com
*.ci.mediacomwebmail.com
*.cicd.mediacomwebmail.com
*.hotfix.mediacomwebmail.com
mediacomwebmail.com
*.mediacomwebmail.com
*.pipeline.mediacomwebmail.com
*.production.mediacomwebmail.com
*.sandbox.mediacomwebmail.com
*.support.mediacomwebmail.com
*.users.mediacomwebmail.com
*.ww38.mediacomwebmail.com
moyheafricanhairbraiding.com
*.moyheafricanhairbraiding.com
*.ww38.moyheafricanhairbraiding.com
*.www.moyheafricanhairbraiding.com
*.random.refinancingloan.com.au
refinancingloan.com.au
*.refinancingloan.com.au
ribiysm.xyz
*.ribiysm.xyz
richardpace.com
*.richardpace.com
*.testing.richardpace.com
*.demo.usakichi.com
usakichi.com
*.usakichi.com
Other domains in certificate