Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=12021.work
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
June 09, 2026
Valid Until
September 07, 2026
85 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8D:20:E7:22:F8:68:68:A2:5E:C8:79:9E:A0:3B:9C:F4:83:E3:79:33:69:F0:2B:D6:52:A4:64:F8:B5:47:EE:F4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
93 domains
humourgadgets.com
*.humourgadgets.com
12021.work
*.12021.work
1599-2261.com
*.1599-2261.com
18bells.com
*.18bells.com
*.0n6y.1eb.cc
1eb.cc
*.1eb.cc
*.g2.1eb.cc
1win-t12.top
*.1win-t12.top
29719.blog
*.29719.blog
2s24k4a8.xyz
*.2s24k4a8.xyz
33peee.com
*.33peee.com
42065.co
*.42065.co
472878.rip
*.472878.rip
58x.app
*.58x.app
79484.town
*.79484.town
abouttimer.com
*.abouttimer.com
appligroup.com
*.appligroup.com
baidulinkdownload.com
*.baidulinkdownload.com
bcm75.top
*.bcm75.top
bingecritics.com
*.bingecritics.com
blueeaglesystems.com
*.blueeaglesystems.com
briangibbsconsulting.com
*.briangibbsconsulting.com
cestart.org
*.cestart.org
cryptoguard.click
*.cryptoguard.click
dionnehairmagic.com
*.dionnehairmagic.com
dropstodrop.com
*.dropstodrop.com
*.email.dropstodrop.com
dsj108.com
*.dsj108.com
dzlinvestment.com
*.dzlinvestment.com
estudioferreira.com
*.estudioferreira.com
extrovert.com.au
*.extrovert.com.au
fortilineinc.com
*.fortilineinc.com
globalfreightransit.com
*.globalfreightransit.com
heloisesale.com
*.heloisesale.com
inkapelis.me
*.inkapelis.me
jiliplaybet.com
*.jiliplaybet.com
novasm7tc7nasstair.com
*.novasm7tc7nasstair.com
oculorumeyewear.com
*.oculorumeyewear.com
papaclutchcustoms.com
*.papaclutchcustoms.com
raio.bet
*.raio.bet
registeryourninga.com
*.registeryourninga.com
squamishcentennialstables.com
*.squamishcentennialstables.com
theuselesswebsites.com
*.theuselesswebsites.com
vip-form.com
*.vip-form.com
wecreatesoul.com
*.wecreatesoul.com
wtd442v.top
*.wtd442v.top
xn--fiqz4lr9gyud22ac08bbmcegy09h995c.net
*.xn--fiqz4lr9gyud22ac08bbmcegy09h995c.net
zytriz.com
*.zytriz.com
Other domains in certificate