Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=iqoption.cm
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 28, 2026
Valid Until
August 26, 2026
86 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
45:7D:86:37:FD:AC:EC:86:5E:FC:0B:E7:2C:3B:57:24:D4:CA:E5:E2:32:5C:56:5D:21:A8:5C:2D:26:F3:06:2E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
iqoption.cm
*.iqoption.cm
*.hostmaster.iqoption.cm
ballettalk.com
*.ballettalk.com
*.ww25.ballettalk.com
*.ww38.ballettalk.com
cfi.au
*.cfi.au
*.ww25.cfi.au
gwd.de
*.gwd.de
*.sub.gwd.de
*.ww25.gwd.de
*.admin.healthfitnessaustralia.net
*.analytic.healthfitnessaustralia.net
*.api.healthfitnessaustralia.net
*.app.healthfitnessaustralia.net
*.backend.healthfitnessaustralia.net
*.bi.healthfitnessaustralia.net
*.bigdata.healthfitnessaustralia.net
*.chart.healthfitnessaustralia.net
*.ci.healthfitnessaustralia.net
*.dash.healthfitnessaustralia.net
*.dashboard.healthfitnessaustralia.net
*.demo.healthfitnessaustralia.net
*.dev.healthfitnessaustralia.net
*.flows.healthfitnessaustralia.net
*.forum.healthfitnessaustralia.net
healthfitnessaustralia.net
*.healthfitnessaustralia.net
*.hotfix-superset.healthfitnessaustralia.net
*.iapebjenkins.healthfitnessaustralia.net
*.jenkins-alpha.healthfitnessaustralia.net
*.jenkins.healthfitnessaustralia.net
*.m.healthfitnessaustralia.net
*.mail.healthfitnessaustralia.net
*.owa.healthfitnessaustralia.net
*.pipeline-beta.healthfitnessaustralia.net
*.pipeline.healthfitnessaustralia.net
*.remote.healthfitnessaustralia.net
*.reporting.healthfitnessaustralia.net
*.staging.healthfitnessaustralia.net
*.superset.healthfitnessaustralia.net
*.supersets.healthfitnessaustralia.net
*.twtrbowa.healthfitnessaustralia.net
*.uat.healthfitnessaustralia.net
*.vpn.healthfitnessaustralia.net
*.webmail.healthfitnessaustralia.net
*.www.healthfitnessaustralia.net
*.bc.nir.net
*.bzh.nir.net
*.bzn.nir.net
*.colombia.nir.net
*.cssk.nir.net
*.deped.nir.net
*.fms.nir.net
*.fomart.nir.net
*.hmk.nir.net
*.isr.nir.net
*.nca-suitengu2.nir.net
nir.net
*.nir.net
*.ots.nir.net
*.pro.nir.net
*.s-k-w.nir.net
*.sh-fm.nir.net
*.shintoshin.nir.net
*.sip.nir.net
*.sore.nir.net
*.swt.nir.net
*.u.nir.net
*.ufn.nir.net
*.vcy.nir.net
*.wildcard.nir.net
*.ww16.nir.net
*.ww38.nir.net
*.888-220-2228.petir4d.biz
petir4d.biz
*.petir4d.biz
*.somebody-trolling-for-fish.petir4d.biz
scotiabamk.com
*.scotiabamk.com
*.scotiaonline.scotiabamk.com
*.ww17.scotiabamk.com
*.ww25.scotiabamk.com
*.ww38.scotiabamk.com
tuhsy.com
*.tuhsy.com
Other domains in certificate