Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=dis-karty.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 06, 2026
Valid Until
May 07, 2026
88 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
41:47:A3:81:61:84:F4:0F:61:FD:35:1C:0C:59:4C:A5:FB:BB:D5:BC:2E:86:47:77:38:7D:4B:B8:AB:02:47:AD
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
88 domains
mayanpool.com
*.mayanpool.com
dis-karty.com
*.dis-karty.com
efanisite.com
*.efanisite.com
elegantweddingsevent.beauty
*.elegantweddingsevent.beauty
embrace.cfd
*.embrace.cfd
finnoti.com
*.finnoti.com
futureinvestzone.sbs
*.futureinvestzone.sbs
gachaegp88.com
*.gachaegp88.com
gaimifyd.com
*.gaimifyd.com
gameflare.co
*.gameflare.co
gemini-exchange.link
*.gemini-exchange.link
getefaniteam.com
*.getefaniteam.com
getientryhq.com
*.getientryhq.com
goldcash247.com
*.goldcash247.com
gthgb.co
*.gthgb.co
gyztstc270.vip
*.gyztstc270.vip
handoutcluster.com
*.handoutcluster.com
harrypotter.website
*.harrypotter.website
hflsyz.pics
*.hflsyz.pics
hijjz.cc
*.hijjz.cc
home-shop.asia
*.home-shop.asia
hubcourses.com
*.hubcourses.com
hy10451.com
*.hy10451.com
ijopaasat.in
*.ijopaasat.in
imperialginsenoside.com
*.imperialginsenoside.com
instand.it
*.instand.it
insttallturbotax.com
*.insttallturbotax.com
iphone-dubai.com
*.iphone-dubai.com
jejelous.top
*.jejelous.top
jwfmq.biz
*.jwfmq.biz
kaohsiung-escort-649676446.click
*.kaohsiung-escort-649676446.click
kenkaki.com
*.kenkaki.com
kunmanga.lat
*.kunmanga.lat
lancamento.net
*.lancamento.net
lfv4l.cc
*.lfv4l.cc
lordcasino.co
*.lordcasino.co
lordfilms.pw
*.lordfilms.pw
loveproblemsolutions.info
*.loveproblemsolutions.info
lq3cmylte.buzz
*.lq3cmylte.buzz
m3bpa1.top
*.m3bpa1.top
melaniabitcoin.com
*.melaniabitcoin.com
meta-assistant.com
*.meta-assistant.com
militarydronecrucible.com
*.militarydronecrucible.com
mkld.info
*.mkld.info
Other domains in certificate