Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=sapoatualidade.online
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 07, 2026
Valid Until
August 05, 2026
84 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CD:3C:1C:3F:A7:B9:B5:18:54:58:DE:8F:A4:E7:DD:B9:9D:D3:E5:30:E3:C8:D0:64:F2:C7:E8:43:FA:E4:24:49
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
igpasshack.com
*.igpasshack.com
*.admin.igpasshack.com
*.analytic.igpasshack.com
*.analytics.igpasshack.com
*.bi.igpasshack.com
*.chart.igpasshack.com
*.cpanel.igpasshack.com
*.dashboards.igpasshack.com
*.demo.igpasshack.com
*.dev.igpasshack.com
*.mail.igpasshack.com
*.metric.igpasshack.com
*.moneyboat.igpasshack.com
*.mta-sts.igpasshack.com
*.notexistswss.igpasshack.com
*.reporting.igpasshack.com
*.reports.igpasshack.com
*.su.igpasshack.com
*.superset.igpasshack.com
*.test.igpasshack.com
*.web.igpasshack.com
*.webdisk.igpasshack.com
*.webmail.igpasshack.com
*.workflow.igpasshack.com
*.ws.igpasshack.com
*.wss.igpasshack.com
*.www.igpasshack.com
appoffeesrs.online
*.appoffeesrs.online
*.ww38.appoffeesrs.online
bulgariahorseriding.eu
*.bulgariahorseriding.eu
*.fubtaapf.bulgariahorseriding.eu
canecorsogreece.com
*.canecorsogreece.com
*.ftp.canecorsogreece.com
*.www.canecorsogreece.com
erotiksexshop.info
*.erotiksexshop.info
*.davis.friendspassing.com
friendspassing.com
*.friendspassing.com
*.taylor.friendspassing.com
*.wilsonlove.friendspassing.com
*.drink.maifestival.space
*.durante.maifestival.space
*.edu.maifestival.space
*.hostmaster.maifestival.space
maifestival.space
*.maifestival.space
*.roger.maifestival.space
*.stress.maifestival.space
*.www.maifestival.space
*.autodiscover.meanmachins.site
meanmachins.site
*.meanmachins.site
*.agent.oldjerusalem.us
*.ai.oldjerusalem.us
*.beta.oldjerusalem.us
*.bi.oldjerusalem.us
*.ci.oldjerusalem.us
*.hostmaster.oldjerusalem.us
*.integration.oldjerusalem.us
oldjerusalem.us
*.oldjerusalem.us
*.uat.oldjerusalem.us
*.ww38.oldjerusalem.us
oley.au
*.oley.au
openpg.vip
*.openpg.vip
*.ww25.openpg.vip
safricashop.shop
*.safricashop.shop
*.www.safricashop.shop
sapoatualidade.online
*.sapoatualidade.online
*.sitemap.sapoatualidade.online
*.4y4n.thewonderreport.com
*.au.thewonderreport.com
*.biz.thewonderreport.com
*.com.thewonderreport.com
*.info.thewonderreport.com
*.net.thewonderreport.com
thewonderreport.com
*.thewonderreport.com
*.tyme.thewonderreport.com
*.uk.thewonderreport.com
Other domains in certificate