Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=hochu.store
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 15, 2026
Valid Until
August 13, 2026
78 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8B:76:AE:BE:0B:9B:A6:DE:3C:D8:4A:C2:CD:4A:D3:4E:3A:A0:FD:BA:6F:47:82:AA:C2:89:06:CD:B3:E7:42:C7
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
regulation.dev
*.regulation.dev
*.666858d1-fbad-43d2-a3a4-68189afb1aa0.regulation.dev
*.admin.regulation.dev
*.api.regulation.dev
*.ec82cb88-b22d-4880-9eef-ec56ae469b58.regulation.dev
*.fc1dd70a-c121-4652-8baa-23e1a50ebf50.regulation.dev
*.iyftct.regulation.dev
*.test.regulation.dev
*.uorbqdev.regulation.dev
apikecbula.org
*.apikecbula.org
*.ev8atk.apikecbula.org
*.1jrmyd.apikeckotaciruas.org
apikeckotaciruas.org
*.apikeckotaciruas.org
*.5sp1vf.apikeckotapurwodadi.org
apikeckotapurwodadi.org
*.apikeckotapurwodadi.org
*.2fye4w.apikeckotasukamakmue.org
apikeckotasukamakmue.org
*.apikeckotasukamakmue.org
apikecpaniaikab.org
*.apikecpaniaikab.org
*.wgmf21.apikecpaniaikab.org
apikecpenukalabablematangilir.org
*.apikecpenukalabablematangilir.org
*.eqd268.apikecpenukalabablematangilir.org
bedazzled.in
*.bedazzled.in
*.m.bedazzled.in
*.www.bedazzled.in
biyasports.com
*.biyasports.com
*.sitemaps.biyasports.com
byownershowcase.com
*.byownershowcase.com
*.m.byownershowcase.com
*.sitemap.byownershowcase.com
darklypagan.com
*.darklypagan.com
*.gateway.darklypagan.com
*.vpn.darklypagan.com
*.www.darklypagan.com
*.1.hochu.store
*.11111.hochu.store
*.app.hochu.store
*.buy.hochu.store
*.bygersite.hochu.store
hochu.store
*.hochu.store
*.mehqpbygersite.hochu.store
*.nazar.hochu.store
*.webdisk.hochu.store
*.webmail.hochu.store
*.hostmaster.magnesium.me
*.iptables.magnesium.me
magnesium.me
*.magnesium.me
offbeatpondy.com
*.offbeatpondy.com
*.upbeatintl.offbeatpondy.com
*.com.perldap.org
perldap.org
*.perldap.org
*.xn---ask-me-bet-k57awjvgrb1e8bwf9sxa.perldap.org
*.cpanel.rolleth.com
*.m.rolleth.com
*.mail.rolleth.com
rolleth.com
*.rolleth.com
*.m.rugpull.co
rugpull.co
*.rugpull.co
saivod.es
*.saivod.es
*.hostmaster.savingsara.com
*.m.savingsara.com
savingsara.com
*.savingsara.com
*.www.savingsara.com
*.intelligence.snowstorms.it
snowstorms.it
*.snowstorms.it
*.www.snowstorms.it
*.co.transcare.co
transcare.co
*.transcare.co
*.www.transcare.co
Other domains in certificate