Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=somniluxx.com
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
June 03, 2026
Valid Until
September 01, 2026
74 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
95:32:32:6E:C2:85:D2:58:8B:72:5F:A7:49:FF:CA:1F:E2:37:C8:21:20:34:DE:BA:43:FA:D3:50:D6:81:F7:73
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
johnnywa.com
*.johnnywa.com
*.store.johnnywa.com
198446.loan
*.198446.loan
*.loan.198446.loan
beautiful-sunflower.com
*.beautiful-sunflower.com
*.ww38.beautiful-sunflower.com
*.2dbks.eghijj.top
*.2l6wm.eghijj.top
*.5vs9r.eghijj.top
*.6cd9j.eghijj.top
*.aqzmk.eghijj.top
*.cg4o5.eghijj.top
eghijj.top
*.eghijj.top
*.f9d5k1.eghijj.top
*.feew6.eghijj.top
*.hrka1.eghijj.top
*.iovou.eghijj.top
*.j2zfz.eghijj.top
*.jyikv.eghijj.top
*.nktjv.eghijj.top
*.nxc75.eghijj.top
*.qakt3.eghijj.top
*.qpuov.eghijj.top
*.vhakn.eghijj.top
*.z3dl1.eghijj.top
*.z4r76.eghijj.top
*.bkworld-uat-01.ofitechnology-testing.com
ofitechnology-testing.com
*.ofitechnology-testing.com
orbit-gazesonic.club
*.orbit-gazesonic.club
*.p003f2.orbit-gazesonic.club
*.20250330.sexian40.buzz
*.20250513.sexian40.buzz
*.20250529.sexian40.buzz
*.20250530.sexian40.buzz
*.admin.sexian40.buzz
*.assets.sexian40.buzz
*.members.sexian40.buzz
*.qumhmtest.sexian40.buzz
sexian40.buzz
*.sexian40.buzz
*.test.sexian40.buzz
*.www.sexian40.buzz
*.406b8958-a0a9-4ed7-9548-b7d2c2ff68b8.somniluxx.com
*.admin.somniluxx.com
*.api.somniluxx.com
*.app.somniluxx.com
*.backup.somniluxx.com
*.dashboard.somniluxx.com
*.demo.somniluxx.com
*.dev.somniluxx.com
*.gbmqsassets.somniluxx.com
*.mail.somniluxx.com
*.mailer.somniluxx.com
*.marketing.somniluxx.com
*.qa.somniluxx.com
*.r2d4oi.somniluxx.com
*.secure.somniluxx.com
*.shop.somniluxx.com
somniluxx.com
*.somniluxx.com
*.staging.somniluxx.com
*.stg.somniluxx.com
*.test.somniluxx.com
*.uat.somniluxx.com
*.v1.somniluxx.com
*.v2.somniluxx.com
*.web.somniluxx.com
t-cracia.info
*.t-cracia.info
*.www.t-cracia.info
*.a.themagistvz.info
*.backup.themagistvz.info
*.dev.themagistvz.info
*.test.themagistvz.info
themagistvz.info
*.themagistvz.info
*.analytic.unodue.it
*.demo.unodue.it
*.superset.unodue.it
unodue.it
*.unodue.it
*.priyp1.w13726082.com
w13726082.com
*.w13726082.com
Other domains in certificate