Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=projectsstem.org
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 01, 2026
Valid Until
July 30, 2026
82 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E6:4D:EC:8B:B0:7E:C7:A3:BB:76:CE:3C:9A:1E:2B:A6:E0:A2:92:BD:6A:C1:3D:B0:88:EB:74:A8:4A:D9:60:64
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
liquidterminals.com
*.liquidterminals.com
*.secure.liquidterminals.com
55clubm.in
*.55clubm.in
*.com.55clubm.in
*.service.55clubm.in
*.support.55clubm.in
applianceexpress.co.uk
*.applianceexpress.co.uk
*.mailserver.applianceexpress.co.uk
*.adv.awersi.click
awersi.click
*.awersi.click
*.c36pbr0.awersi.click
bonfa.com
*.bonfa.com
*.www.bonfa.com
*.anyconnect.bridgecapitalmortgage.com
bridgecapitalmortgage.com
*.bridgecapitalmortgage.com
*.gate.bridgecapitalmortgage.com
*.rd.bridgecapitalmortgage.com
*.cencosud-personas.checknassafillingstation.com
checknassafillingstation.com
*.checknassafillingstation.com
*.cmr.checknassafillingstation.com
*.san.checknassafillingstation.com
*.santa.checknassafillingstation.com
*.admin.collectionmanagement.it
*.api.collectionmanagement.it
*.backend.collectionmanagement.it
collectionmanagement.it
*.collectionmanagement.it
*.data.collectionmanagement.it
*.demo.collectionmanagement.it
*.dev.collectionmanagement.it
*.development.collectionmanagement.it
*.forecast.collectionmanagement.it
*.hotfix.collectionmanagement.it
*.intel.collectionmanagement.it
*.preview.collectionmanagement.it
*.report.collectionmanagement.it
*.staging.collectionmanagement.it
*.superset.collectionmanagement.it
*.auth.downloadsgratis.org
*.box.downloadsgratis.org
downloadsgratis.org
*.downloadsgratis.org
*.mx02.downloadsgratis.org
*.rds.downloadsgratis.org
knightsdesign.com
*.knightsdesign.com
*.vpn.knightsdesign.com
*.webmail.knightsdesign.com
knoff.com
*.knoff.com
legacygame46.top
*.legacygame46.top
mailpostmail.xyz
*.mailpostmail.xyz
marketereye.com
*.marketereye.com
mastervincipro.com
*.mastervincipro.com
*.api.nawwarah.com
*.git.nawwarah.com
*.mahadalydaruth.nawwarah.com
nawwarah.com
*.nawwarah.com
*.sitemaps.nawwarah.com
officeorbit.live
*.officeorbit.live
phantaz.xyz
*.phantaz.xyz
prodiyadventures.xyz
*.prodiyadventures.xyz
projectsstem.org
*.projectsstem.org
*.ww25.projectsstem.org
radiantrace56.top
*.radiantrace56.top
rbivm.bargains
*.rbivm.bargains
*.blog.xn--sprr0qtg.com
xn--sprr0qtg.com
*.xn--sprr0qtg.com
yarrarangesfoodconnections.com.au
*.yarrarangesfoodconnections.com.au
Other domains in certificate