76/100 SECURITY SCORE

Certificate Information

Subject
CN=papertalk.io
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 04, 2026
Valid Until
May 05, 2026 77 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
90:5E:25:BA:53:41:16:58:A1:2F:26:83:2E:6C:2A:EC:A4:91:10:60:E8:EF:B6:57:3B:0A:46:EF:77:1C:A1:E5
Alternative Names

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
asitiswritten.com *.asitiswritten.com *.m.asitiswritten.com *.ww16.asitiswritten.com *.ww38.asitiswritten.com

Other domains in certificate

1strowsports.eu *.1strowsports.eu *.wildcard.1strowsports.eu *.ww38.1strowsports.eu
4money.xyz *.4money.xyz *.api.4money.xyz *.app.4money.xyz *.aws.4money.xyz *.laravel.4money.xyz *.mail.4money.xyz *.sitemaps.4money.xyz *.ww25.4money.xyz *.ww38.4money.xyz
alio.bio *.alio.bio *.api.alio.bio *.backoffice.alio.bio *.client.alio.bio *.homepage.alio.bio *.marcas.alio.bio *.ww25.alio.bio
cartoonsarea.xyz *.cartoonsarea.xyz *.eng.cartoonsarea.xyz *.mail.cartoonsarea.xyz *.ww25.cartoonsarea.xyz *.www.cartoonsarea.xyz
casino---vulkan.online *.casino---vulkan.online *.wildcard.casino---vulkan.online
*.fortivpn.kozlow.com kozlow.com *.kozlow.com *.nuisance.kozlow.com
*.api.papertalk.io papertalk.io *.papertalk.io *.v2.papertalk.io *.www.papertalk.io
*.assets.spiritualsomatictherapy.com *.mail.spiritualsomatictherapy.com *.secure.spiritualsomatictherapy.com spiritualsomatictherapy.com *.spiritualsomatictherapy.com *.uat.spiritualsomatictherapy.com
*.ssl.stanislao.com stanislao.com *.stanislao.com *.ww25.stanislao.com
*.002a45.wisdomkindle.com *.032c22.wisdomkindle.com *.19d12f.wisdomkindle.com *.2a1b6b.wisdomkindle.com *.43ddbe.wisdomkindle.com *.568194.wisdomkindle.com *.6a4d6d.wisdomkindle.com *.6bba2f.wisdomkindle.com *.a2eff6.wisdomkindle.com *.aa5f29.wisdomkindle.com *.e992c4.wisdomkindle.com *.eu4.wisdomkindle.com *.f3a415.wisdomkindle.com *.f9de0e.wisdomkindle.com *.fdb999.wisdomkindle.com *.g20jhv5v57nx8.wisdomkindle.com *.gatv.wisdomkindle.com *.lc.wisdomkindle.com *.ll.wisdomkindle.com wisdomkindle.com *.wisdomkindle.com *.ww25.wisdomkindle.com
*.app1.xxl-sale.co.uk *.assets.xxl-sale.co.uk *.suttons-seeds.xxl-sale.co.uk *.uk.xxl-sale.co.uk xxl-sale.co.uk *.xxl-sale.co.uk
*.2013wudutianlongbabusifu.zefiy.com *.2013xinbanshentuqingbiansifu.zefiy.com *.2013xinkaimolisifu.zefiy.com *.2013zuixinhuobaoausifu.zefiy.com *.qiugehaowandetianlongsifu.zefiy.com zefiy.com *.zefiy.com