Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=makku.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 11, 2026
Valid Until
May 12, 2026
89 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
DB:65:99:12:78:6D:43:DA:A6:12:2C:C6:98:88:F4:FA:44:63:72:97:57:29:F0:DA:98:5E:24:70:2B:00:6E:91
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
makku.com
*.makku.com
*.crm.makku.com
*.feng.makku.com
adcination.com
*.adcination.com
*.mgit.adcination.com
*.www.adcination.com
adolescence.me
*.adolescence.me
*.dav.adolescence.me
*.backup.christophermjohnston.com
christophermjohnston.com
*.christophermjohnston.com
*.dnkxibaythm.christophermjohnston.com
*.jagaxdev.christophermjohnston.com
*.summary.christophermjohnston.com
*.wp.christophermjohnston.com
*.andromeda.concordwatch.com
*.ar.concordwatch.com
concordwatch.com
*.concordwatch.com
*.its.concordwatch.com
*.msk.concordwatch.com
*.portainer.concordwatch.com
*.static.concordwatch.com
*.ask.espinar.com
*.edge.espinar.com
espinar.com
*.espinar.com
*.m.espinar.com
*.postmaster.espinar.com
*.www.espinar.com
*.df27ec34-5772-4dd8-881b-93ce2f258b9b.genomatcher.com
genomatcher.com
*.genomatcher.com
khaleejtimes.news
*.khaleejtimes.news
*.webdisk.khaleejtimes.news
*.webmail.khaleejtimes.news
maindoor.eu
*.maindoor.eu
*.cpanel.monyxprt.click
monyxprt.click
*.monyxprt.click
*.newsrain.sangamamtraders.net.in
sangamamtraders.net.in
*.sangamamtraders.net.in
*.email.pancaro.com
pancaro.com
*.pancaro.com
pebshampharmacy.co.uk
*.pebshampharmacy.co.uk
*.localhost.stunserver.com
*.m.stunserver.com
*.shop.stunserver.com
*.stun.stunserver.com
stunserver.com
*.stunserver.com
*.whm.stunserver.com
su04rt.top
*.su04rt.top
sun777.love
*.sun777.love
*.sitemap.sweeptracker.com
*.store.sweeptracker.com
sweeptracker.com
*.sweeptracker.com
uogzwp.top
*.uogzwp.top
*.3c438b1f-0b9b-4284-ae6b-35ade8886deb.virginrobot.cam
*.7c023b59-fbfb-442a-a060-78d8a100e73b.virginrobot.cam
*.930ce613-6b88-4361-ad71-5aac1b2f59ec.virginrobot.cam
*.ad.virginrobot.cam
*.adblock.virginrobot.cam
*.adg.virginrobot.cam
*.api.virginrobot.cam
*.dev.virginrobot.cam
*.docs.virginrobot.cam
*.doh.virginrobot.cam
*.mail.virginrobot.cam
*.resolver1.virginrobot.cam
*.rfxttdoh1.virginrobot.cam
virginrobot.cam
*.virginrobot.cam
y8games.my
*.y8games.my
yassistants.com
*.yassistants.com
Other domains in certificate