Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=xn--polisajmakinas-jgc.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 01, 2026
Valid Until
July 30, 2026
61 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8A:9B:9E:F9:F9:2D:DD:7D:73:21:2B:CD:92:57:CE:B5:F0:6D:C8:C2:41:F7:6D:55:36:5B:C5:37:01:86:8F:80
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
merani.com
*.merani.com
*.hostmaster.merani.com
777-cebola777.win
*.777-cebola777.win
*.866f8739-a1fd-4219-813f-969039e8f89f.777-cebola777.win
*.9hf0my.777-cebola777.win
*.c687898f-5bb3-42ff-b605-6ef9fb9822ab.777-cebola777.win
*.docs.777-cebola777.win
*.hr.777-cebola777.win
*.mail.777-cebola777.win
*.www.777-cebola777.win
andl.io
*.andl.io
*.app.andl.io
*.account.applifemeet.xyz
applifemeet.xyz
*.applifemeet.xyz
*.beta-jenkins.applifemeet.xyz
*.cicd.applifemeet.xyz
*.cpcalendars.applifemeet.xyz
*.g64rrgtwuaeug42n.applifemeet.xyz
*.jenkins.applifemeet.xyz
*.vip.applifemeet.xyz
*.wildcard.applifemeet.xyz
*.ww3.applifemeet.xyz
*.ww38.applifemeet.xyz
dovepranzo.com
*.dovepranzo.com
*.mail2.dovepranzo.com
*.www.dovepranzo.com
dx0t.sbs
*.dx0t.sbs
howlovefeels.com
*.howlovefeels.com
*.www.howlovefeels.com
investorsnote.com
*.investorsnote.com
organicsoap.au
*.organicsoap.au
*.app.ourstorybridal.com
*.com.ourstorybridal.com
ourstorybridal.com
*.ourstorybridal.com
qwerty.com.au
*.qwerty.com.au
*.test.qwerty.com.au
*.sa.sbv.au
sbv.au
*.sbv.au
*.cdxt.service.ws
*.deposits-hcsbk.service.ws
*.ftp.service.ws
*.klient.service.ws
*.messagebus.service.ws
*.pkxajnfe.service.ws
service.ws
*.service.ws
*.velocustomer.service.ws
*.velotech.service.ws
*.blog.studiocitynews.com
*.m.studiocitynews.com
studiocitynews.com
*.studiocitynews.com
*.vpn.studiocitynews.com
*.wp.studiocitynews.com
*.stone.teaktales.in
teaktales.in
*.teaktales.in
*.rds.xn--polisajmakinas-jgc.com
xn--polisajmakinas-jgc.com
*.xn--polisajmakinas-jgc.com
*.02f78597-0040-40bc-a27d-d0a06bb3f75a.zhnas.healthcare
*.admin.zhnas.healthcare
*.api-test.zhnas.healthcare
*.autodiscover.zhnas.healthcare
*.backup.zhnas.healthcare
*.cjcrvsample.zhnas.healthcare
*.dev.zhnas.healthcare
*.dljjiadmin.zhnas.healthcare
*.links.zhnas.healthcare
*.login.zhnas.healthcare
*.msfvktjisxlogin.zhnas.healthcare
*.sample.zhnas.healthcare
*.ssh.zhnas.healthcare
*.test.zhnas.healthcare
*.tjisxlogin.zhnas.healthcare
*.wiki.zhnas.healthcare
zhnas.healthcare
*.zhnas.healthcare
Other domains in certificate