Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=pretrainx.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 22, 2026
Valid Until
August 20, 2026
55 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
44:06:F0:BB:9A:17:13:E9:C6:65:C4:9A:9C:F6:E3:77:E9:EA:EC:82:88:54:92:64:2D:F1:D2:D1:69:C1:04:5C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
magics.it
*.magics.it
*.admin.magics.it
*.analytics.magics.it
*.api.magics.it
*.backend.magics.it
*.dashboard.magics.it
*.dashs.magics.it
*.demo.magics.it
*.hostmaster.magics.it
*.intel.magics.it
*.intelligence.magics.it
*.production-superset.magics.it
*.redash.magics.it
*.reporting.magics.it
*.superset.magics.it
clicknowhere.click
*.clicknowhere.click
clinical-trials-expo-916.sbs
*.clinical-trials-expo-916.sbs
cohen-markets.com
*.cohen-markets.com
expeian.com
*.expeian.com
honelgroup.com
*.honelgroup.com
*.www.honelgroup.com
*.admin.onexperience.it
*.api.onexperience.it
*.app.onexperience.it
*.mx.onexperience.it
onexperience.it
*.onexperience.it
*.rds.onexperience.it
*.reporting.onexperience.it
*.api.positivecentrum.international
*.app.positivecentrum.international
*.assets.positivecentrum.international
*.backup.positivecentrum.international
*.dev.positivecentrum.international
*.docs.positivecentrum.international
*.external.positivecentrum.international
*.ftp.positivecentrum.international
*.intranet.positivecentrum.international
*.mail.positivecentrum.international
*.my.positivecentrum.international
*.portal.positivecentrum.international
positivecentrum.international
*.positivecentrum.international
*.public.positivecentrum.international
*.research.positivecentrum.international
*.school.positivecentrum.international
*.send.positivecentrum.international
*.sharepoint.positivecentrum.international
*.staging.positivecentrum.international
*.test.positivecentrum.international
*.uat.positivecentrum.international
*.webmail.positivecentrum.international
pretrainx.com
*.pretrainx.com
quantzonebot.com
*.quantzonebot.com
qzmfpm.cyou
*.qzmfpm.cyou
t2o669w.cc
*.t2o669w.cc
theautorepairadvisors.com
*.theautorepairadvisors.com
*.admin.theperfectmoment.it
*.analytics.theperfectmoment.it
*.analyze.theperfectmoment.it
*.api.theperfectmoment.it
*.backend.theperfectmoment.it
*.bigdata.theperfectmoment.it
*.dashboard.theperfectmoment.it
*.data.theperfectmoment.it
*.demo.theperfectmoment.it
*.dev.theperfectmoment.it
*.research.theperfectmoment.it
*.superset.theperfectmoment.it
theperfectmoment.it
*.theperfectmoment.it
*.www.theperfectmoment.it
thoughtpulse.info
*.thoughtpulse.info
tilitoimistodigibooks.com
*.tilitoimistodigibooks.com
titanquest645.info
*.titanquest645.info
Other domains in certificate