Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=flymaxtravel.info
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
June 04, 2026
Valid Until
September 02, 2026
77 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
80:3C:4F:6A:EC:DF:E7:D5:F5:56:A3:4F:3C:88:B5:ED:56:07:AF:72:98:01:85:F8:DA:AA:5A:95:8B:B1:FB:B1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
kinolook.space
*.kinolook.space
*.7l5c2pmiw3.kinolook.space
*.8k.kinolook.space
*.9h11imfd.kinolook.space
*.kbje34rv85.kinolook.space
*.kd3.kinolook.space
*.lirnft23s.kinolook.space
*.qnbanh.kinolook.space
*.tkmiz2h.kinolook.space
*.ww25.kinolook.space
59a0yyq.top
*.59a0yyq.top
*.civoh.59a0yyq.top
*.g89kw.59a0yyq.top
*.lcjev.59a0yyq.top
*.qk6fu.59a0yyq.top
*.zl1z8.59a0yyq.top
azmedassn.org
*.azmedassn.org
*.mail.azmedassn.org
climate2020podcast.com
*.climate2020podcast.com
*.ww38.climate2020podcast.com
*.ci.desit.com
*.cicd.desit.com
desit.com
*.desit.com
*.dev.desit.com
*.jenkins.desit.com
*.online.desit.com
*.pipeline.desit.com
*.poc.desit.com
*.random.desit.com
*.uat.desit.com
*.users.desit.com
*.ww16.desit.com
*.ww25.desit.com
*.ww38.desit.com
*.www.desit.com
*.6z0dmv.emmettronics.services
*.api.emmettronics.services
*.app.emmettronics.services
*.backup.emmettronics.services
*.dev.emmettronics.services
emmettronics.services
*.emmettronics.services
*.staging.emmettronics.services
*.uat.emmettronics.services
*.6e5e6d80-00a3-4202-ab0e-874f030f3be4.flymaxtravel.info
*.8j9ijq.flymaxtravel.info
*.a.flymaxtravel.info
*.api.flymaxtravel.info
*.app.flymaxtravel.info
flymaxtravel.info
*.flymaxtravel.info
goldenwestbrass.com
*.goldenwestbrass.com
*.aports.hulu.live
*.app.hulu.live
hulu.live
*.hulu.live
*.of.hulu.live
*.on.hulu.live
*.to.hulu.live
*.ww25.hulu.live
*.ww38.hulu.live
*.admin.maximumandroid.net
*.checkout.maximumandroid.net
*.cpanel.maximumandroid.net
*.crm.maximumandroid.net
*.mail.maximumandroid.net
maximumandroid.net
*.maximumandroid.net
*.pop3.maximumandroid.net
*.sitemaps.maximumandroid.net
*.staging.maximumandroid.net
*.visualizations-development.maximumandroid.net
*.webdisk.maximumandroid.net
*.ww12.maximumandroid.net
*.zxbqgm.maximumandroid.net
*.a.sfschoolalliance.org
*.blog.sfschoolalliance.org
*.external.sfschoolalliance.org
*.public.sfschoolalliance.org
*.server.sfschoolalliance.org
sfschoolalliance.org
*.sfschoolalliance.org
*.sitemap.sfschoolalliance.org
*.ww25.sfschoolalliance.org
Other domains in certificate