Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=iv88.deal
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 12, 2026
Valid Until
May 13, 2026
89 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8B:CC:A3:6B:30:3E:FE:92:E9:D0:73:E4:73:AA:16:A3:89:90:CE:AE:64:88:6F:F2:DA:FF:7E:CD:53:EE:41:5D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
kinross.de
*.kinross.de
*.random.kinross.de
airecraftheatingandcooling.us
*.airecraftheatingandcooling.us
behnce.net
*.behnce.net
bingonight.com.au
*.bingonight.com.au
*.ww25.bingonight.com.au
*.aniqmail.cacciatori.com
cacciatori.com
*.cacciatori.com
*.metric.cacciatori.com
*.newmail2013.cacciatori.com
*.bi.dusty.com.au
dusty.com.au
*.dusty.com.au
*.hermes.dusty.com.au
eltrajin.com
*.eltrajin.com
*.ww25.eltrajin.com
*.ww38.eltrajin.com
fetisch-fantasien.de
*.fetisch-fantasien.de
firstsite.com.au
*.firstsite.com.au
*.sitebuilder.firstsite.com.au
*.account.iv88.deal
*.birbank.iv88.deal
*.demirbank.iv88.deal
*.imap.iv88.deal
iv88.deal
*.iv88.deal
*.sberbank.iv88.deal
*.staging.iv88.deal
*.westernunion.iv88.deal
*.b42ca5de-6e26-45eb-8b3f-beabc0e3f5e9.javv.cc
*.cos.javv.cc
javv.cc
*.javv.cc
*.m.javv.cc
*.ww103.javv.cc
*.hostmaster.kosmix.it
kosmix.it
*.kosmix.it
*.com.metrixlearing.com
metrixlearing.com
*.metrixlearing.com
microfinance-in-crisis.org
*.microfinance-in-crisis.org
*.app.plantgenics.com
*.monitoring.plantgenics.com
plantgenics.com
*.plantgenics.com
*.store.plantgenics.com
*.vpn.plantgenics.com
*.www.plantgenics.com
*.api.pocketinfinity.io
*.invite.pocketinfinity.io
*.n9zbq37-nghwww.pocketinfinity.io
pocketinfinity.io
*.pocketinfinity.io
*.ww16.pocketinfinity.io
*.www.pocketinfinity.io
*.wwwtest.pocketinfinity.io
*.1ddhi466kv1lplqs.retirement-saving6.online
*.checkout.retirement-saving6.online
*.random.retirement-saving6.online
retirement-saving6.online
*.retirement-saving6.online
rrbjn.com
*.rrbjn.com
samoyed.au
*.samoyed.au
*.freebies.touringhawaii.com
*.random.touringhawaii.com
touringhawaii.com
*.touringhawaii.com
truyengihotnha.com
*.truyengihotnha.com
*.ww38.truyengihotnha.com
*.hostmaster.wale.it
wale.it
*.wale.it
wprldstarhiphop.com
*.wprldstarhiphop.com
*.ww16.wprldstarhiphop.com
*.ww25.wprldstarhiphop.com
*.ww38.wprldstarhiphop.com
Other domains in certificate