Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=fitnessevolvespirit.run
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 04, 2026
Valid Until
May 05, 2026
81 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B7:81:A5:A5:8D:15:89:7B:80:72:69:D0:F9:0E:37:89:AC:96:0F:88:E8:E2:2A:75:FA:4B:5C:B2:2B:42:F4:62
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
zipo.us
*.zipo.us
fitnessevolvespirit.run
*.fitnessevolvespirit.run
fix77jago.sbs
*.fix77jago.sbs
flashover.it
*.flashover.it
fustuckygameframe.com
*.fustuckygameframe.com
fuwin.live
*.fuwin.live
gbbjmc.cc
*.gbbjmc.cc
gestionecontabilita.it
*.gestionecontabilita.it
globaltradenovice.cyou
*.globaltradenovice.cyou
gorepointtech.com
*.gorepointtech.com
gorilla-star.pro
*.gorilla-star.pro
gosend.it
*.gosend.it
gossipbeaconflow.live
*.gossipbeaconflow.live
gossiprouteplanet.live
*.gossiprouteplanet.live
graphicartstudio.it
*.graphicartstudio.it
gulfconnectai.business
*.gulfconnectai.business
unspeared.com
*.unspeared.com
unwomen.it
*.unwomen.it
uuu8838.top
*.uuu8838.top
uwcpt.sbs
*.uwcpt.sbs
vaid646.pro
*.vaid646.pro
virtualservers.it
*.virtualservers.it
vmanji.biz
*.vmanji.biz
vv8387.com
*.vv8387.com
w820.tv
*.w820.tv
watercalls.com
*.watercalls.com
wattsafrica.com
*.wattsafrica.com
wecontrol.it
*.wecontrol.it
wholesomebitesfood.sbs
*.wholesomebitesfood.sbs
winks.it
*.winks.it
wody.it
*.wody.it
wokenhost.com
*.wokenhost.com
work-space-838901607.click
*.work-space-838901607.click
wz6s3v.top
*.wz6s3v.top
x6fllg1ivnu.cc
*.x6fllg1ivnu.cc
xn--2uxp77a8uo.com
*.xn--2uxp77a8uo.com
xn--7gq52g.cc
*.xn--7gq52g.cc
xn--ec-kr5dq56q.com
*.xn--ec-kr5dq56q.com
xn--m7rz12dns2a.com
*.xn--m7rz12dns2a.com
xn--mbt230d.com
*.xn--mbt230d.com
xoilacst.com
*.xoilacst.com
yennguyenchat.com
*.yennguyenchat.com
yewwrs.com
*.yewwrs.com
yfeztd.academy
*.yfeztd.academy
yhgyj.net
*.yhgyj.net
Other domains in certificate