Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=tanmay.site
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 01, 2026
Valid Until
May 02, 2026
76 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
55:AD:C4:0F:E9:7A:8A:A5:08:31:69:7A:BC:72:9A:E5:48:53:18:2D:D9:14:0F:F6:E1:3B:63:89:D0:D2:7F:58
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
kenshi.net
*.kenshi.net
*.forums.kenshi.net
*.gateway.kenshi.net
*.wildcard.kenshi.net
*.ww16.kenshi.net
agradecimentos.com
*.agradecimentos.com
*.blog.agradecimentos.com
bedumb.com
*.bedumb.com
*.hostmaster.bedumb.com
*.hostmaster.ilhavo.com
ilhavo.com
*.ilhavo.com
*.rustore.ilhavo.com
*.ww1.ilhavo.com
keobongdatv.co
*.keobongdatv.co
kgdzul.pro
*.kgdzul.pro
kx268.top
*.kx268.top
linkamp1.com
*.linkamp1.com
lombardstake.com
*.lombardstake.com
michrazim-gera.com
*.michrazim-gera.com
mobilervflorida.news
*.mobilervflorida.news
muntazar.com
*.muntazar.com
*.ww38.muntazar.com
*.dl7.musicfond.com
musicfond.com
*.musicfond.com
muttaqin.com
*.muttaqin.com
*.rdweb.muttaqin.com
*.remote.muttaqin.com
mx719.top
*.mx719.top
nfokk.pro
*.nfokk.pro
nhq4ho4k7pvau.com
*.nhq4ho4k7pvau.com
nn11.live
*.nn11.live
oshgn.pro
*.oshgn.pro
p4fl54s.cyou
*.p4fl54s.cyou
pgajy.pro
*.pgajy.pro
pgaka.pro
*.pgaka.pro
pgakp.pro
*.pgakp.pro
pgalf.pro
*.pgalf.pro
playwin22pro.com
*.playwin22pro.com
rnx92.top
*.rnx92.top
sabortelc.com
*.sabortelc.com
smh90112.cc
*.smh90112.cc
szmuia.bid
*.szmuia.bid
*.exchange.tanmay.site
tanmay.site
*.tanmay.site
tetracycline-vs-843133486.click
*.tetracycline-vs-843133486.click
tronfun.io
*.tronfun.io
tvnzlb.pro
*.tvnzlb.pro
uddrr.pro
*.uddrr.pro
vo8auplxc6qdy.com
*.vo8auplxc6qdy.com
worldnutraceuticals.com
*.worldnutraceuticals.com
xkwrky.academy
*.xkwrky.academy
ykzvn.pro
*.ykzvn.pro
Other domains in certificate