Open
Cached
·
just now
73/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=cassinilab.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 21, 2026
Valid Until
July 20, 2026
29 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
93:96:0A:BF:96:74:24:F0:2B:8B:D6:19:70:BC:18:33:60:80:78:81:E6:F3:DC:56:5B:73:75:A7:B5:1B:A1:42
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
pinther.com
*.pinther.com
*.16.pinther.com
*.api.pinther.com
*.hostmaster.pinther.com
*.mobile.pinther.com
*.random.pinther.com
*.test.pinther.com
*.tv.pinther.com
*.users.pinther.com
affectable.com
*.affectable.com
*.mx7.affectable.com
bestseoservices.com.au
*.bestseoservices.com.au
cassinilab.com
*.cassinilab.com
hayheadfarm.co.uk
*.hayheadfarm.co.uk
*.webdisk.hayheadfarm.co.uk
*.ww25.hayheadfarm.co.uk
ipornvideos.pro
*.ipornvideos.pro
johnsmith.net.au
*.johnsmith.net.au
kredituem.com
*.kredituem.com
leightons.com.au
*.leightons.com.au
*.nm.leightons.com.au
*.sniper.leightons.com.au
*.agent.monroe-eu.com
*.airflow.monroe-eu.com
*.analytics.monroe-eu.com
*.argo.monroe-eu.com
*.auth-ns.monroe-eu.com
*.beta.monroe-eu.com
*.btas.monroe-eu.com
*.chat.monroe-eu.com
*.cust57.monroe-eu.com
*.cust75.monroe-eu.com
*.cust79.monroe-eu.com
*.demo.monroe-eu.com
*.dev.monroe-eu.com
*.development.monroe-eu.com
*.directory.monroe-eu.com
*.e.monroe-eu.com
*.flow.monroe-eu.com
*.flowise.monroe-eu.com
*.flowiseai.monroe-eu.com
*.hotfix.monroe-eu.com
*.infoweb.monroe-eu.com
*.internal.monroe-eu.com
*.jobs.monroe-eu.com
*.mail.monroe-eu.com
*.metabase.monroe-eu.com
monroe-eu.com
*.monroe-eu.com
*.nsk.monroe-eu.com
*.preview.monroe-eu.com
*.prod.monroe-eu.com
*.random.monroe-eu.com
*.sandbox.monroe-eu.com
*.stag.monroe-eu.com
*.staging.monroe-eu.com
*.superset.monroe-eu.com
*.uat.monroe-eu.com
*.up.monroe-eu.com
*.users.monroe-eu.com
*.videos.monroe-eu.com
provoked.life
*.provoked.life
*.clk.qapkgstore.com
*.mail2.qapkgstore.com
qapkgstore.com
*.qapkgstore.com
*.random.qapkgstore.com
*.website.qapkgstore.com
*.ww25.qapkgstore.com
tiggerdirect.com
*.tiggerdirect.com
vistsprint.com
*.vistsprint.com
*.ww17.vistsprint.com
*.ww25.vistsprint.com
*.ww38.vistsprint.com
*.www.vistsprint.com
whichtoplesswaitress.com
*.whichtoplesswaitress.com
Other domains in certificate