Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=cantilena.com
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
June 13, 2026
Valid Until
September 11, 2026
77 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
58:2B:56:72:B8:2E:B4:F4:A9:2E:33:F7:5A:67:10:E4:37:95:56:E6:7A:F6:BC:AE:E9:75:2E:D6:98:D1:CC:35
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
82 domains
immediate-lord2.com
*.immediate-lord2.com
*.www.immediate-lord2.com
*.api.cantilena.com
*.ask.cantilena.com
*.blog.cantilena.com
cantilena.com
*.cantilena.com
*.ci.cantilena.com
*.contact.cantilena.com
*.demo.cantilena.com
*.deposit.cantilena.com
*.dev.cantilena.com
*.es.cantilena.com
*.ftp.cantilena.com
*.gold.cantilena.com
*.hosting.cantilena.com
*.hostmaster.cantilena.com
*.jenkins.cantilena.com
*.jobs.cantilena.com
*.konkurs.cantilena.com
*.noc.cantilena.com
*.portal.cantilena.com
*.secure.cantilena.com
*.social.cantilena.com
*.ww.cantilena.com
*.ww25.cantilena.com
*.ww38.cantilena.com
*.32.chiculate.shop
chiculate.shop
*.chiculate.shop
*.ww25.chiculate.shop
*.ww38.chiculate.shop
*.app.goupcrunchform.co
*.assets.goupcrunchform.co
*.demo.goupcrunchform.co
goupcrunchform.co
*.goupcrunchform.co
*.staging.goupcrunchform.co
igsxks.shop
*.igsxks.shop
*.demo.mlayer.dev
mlayer.dev
*.mlayer.dev
*.staging.mlayer.dev
*.vps.mlayer.dev
*.7fbee81d-34d5-4627-b189-e8f3bf707e2e.purepreciousmetals.info
*.afoxrvls.purepreciousmetals.info
*.d5b1564b-a217-44f1-8fac-db87cf02ba3f.purepreciousmetals.info
*.mail.purepreciousmetals.info
*.mailer.purepreciousmetals.info
*.marketing.purepreciousmetals.info
*.mlfobtsr.purepreciousmetals.info
purepreciousmetals.info
*.purepreciousmetals.info
*.qa.purepreciousmetals.info
*.staging.purepreciousmetals.info
*.stg.purepreciousmetals.info
*.uat.purepreciousmetals.info
*.web.purepreciousmetals.info
quellen-der-kraft-moehnesee.de
*.quellen-der-kraft-moehnesee.de
snapcheck.org
*.snapcheck.org
*.ww25.snapcheck.org
*.p7vjc8.spc168.blog
spc168.blog
*.spc168.blog
*.297dde4d-e53d-4a84-9c44-bfcdd63a4c15.strikeharbor.com
*.6b69bed5-4051-46d5-9641-b8f047e29fc1.strikeharbor.com
*.a2604dde-87a0-47f7-82d8-c84edb25e6b5.strikeharbor.com
*.admin.strikeharbor.com
*.api.strikeharbor.com
*.app.strikeharbor.com
*.assets.strikeharbor.com
*.btllqassets.strikeharbor.com
*.demo.strikeharbor.com
*.dev.strikeharbor.com
strikeharbor.com
*.strikeharbor.com
*.test.strikeharbor.com
*.www.strikeharbor.com
Other domains in certificate