Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=bait-hawrami.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 27, 2026
Valid Until
August 25, 2026
79 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4B:F0:6D:EB:DC:F2:A8:D5:BB:3B:9D:41:99:22:EC:9D:F3:9E:2B:D7:2A:6E:D5:94:AC:0C:BE:7D:76:67:70:CA
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
nftsmartwatch.com
*.nftsmartwatch.com
*.4a25ff84-6a13-41ba-8836-e006c6fe5594.nftsmartwatch.com
*.hostmaster.nftsmartwatch.com
*.m.nftsmartwatch.com
*.metric.nftsmartwatch.com
*.mta-sts.nftsmartwatch.com
*.sitemap.nftsmartwatch.com
*.www.nftsmartwatch.com
*.accounts.ainetpro.com
ainetpro.com
*.ainetpro.com
*.app.ainetpro.com
*.assets.ainetpro.com
*.m.ainetpro.com
*.rdweb.ainetpro.com
*.remote.ainetpro.com
*.vwnrsremote.ainetpro.com
*.31676e0a-bc41-4e33-8865-41565f81e4d6.bait-hawrami.com
*.api.bait-hawrami.com
*.app.bait-hawrami.com
bait-hawrami.com
*.bait-hawrami.com
*.dev.bait-hawrami.com
*.members.bait-hawrami.com
*.vpn.bait-hawrami.com
*.vtmyndev.bait-hawrami.com
*.zdzosapi.bait-hawrami.com
chefaccio.it
*.chefaccio.it
*.test.chefaccio.it
compareutil.co.uk
*.compareutil.co.uk
*.comune.compareutil.co.uk
*.admin.dentistico.it
*.analytic.dentistico.it
*.api.dentistico.it
*.app.dentistico.it
*.backend.dentistico.it
*.centro.dentistico.it
dentistico.it
*.dentistico.it
*.hostmaster.dentistico.it
*.prod.dentistico.it
*.redash.dentistico.it
*.report.dentistico.it
*.studio.dentistico.it
*.superset.dentistico.it
*.55657af0-cda2-42ea-b0ec-e6b1d0ba708f.duangcloud.pro
duangcloud.pro
*.duangcloud.pro
*.12.instapriv.club
*.ewako12.instapriv.club
instapriv.club
*.instapriv.club
*.m.instapriv.club
*.ww1.instapriv.club
*.www.instapriv.club
*.hostmaster.nofinancial.com
nofinancial.com
*.nofinancial.com
*.vpn.nofinancial.com
*.ww25.nofinancial.com
*.www.nofinancial.com
*.1d817.primetimevacay.xyz
primetimevacay.xyz
*.primetimevacay.xyz
*.32.rhamsoluciones.com
rhamsoluciones.com
*.rhamsoluciones.com
*.tienda.rhamsoluciones.com
*.ww38.rhamsoluciones.com
*.app.saluun.co
*.dashboard.saluun.co
*.menu.saluun.co
saluun.co
*.saluun.co
*.admin.semakanmykasihonline.my
*.api.semakanmykasihonline.my
*.app.semakanmykasihonline.my
*.assets.semakanmykasihonline.my
*.blog.semakanmykasihonline.my
*.demo.semakanmykasihonline.my
*.dev.semakanmykasihonline.my
*.mzyfxwwmiistaging.semakanmykasihonline.my
semakanmykasihonline.my
*.semakanmykasihonline.my
*.shop.semakanmykasihonline.my
*.staging.semakanmykasihonline.my
*.test.semakanmykasihonline.my
Other domains in certificate