Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=moonmedicine.co
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 20, 2026
Valid Until
August 18, 2026
65 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B2:D3:EA:24:32:F1:A2:DC:1D:94:A7:BF:21:AB:D6:34:09:6F:6E:B7:E4:21:A3:63:7F:54:B2:D4:22:8D:97:49
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
milleniumnatural.com
*.milleniumnatural.com
*.rds.milleniumnatural.com
*.www2.milleniumnatural.com
*.343e20ac-918c-4ab2-8145-9dd729fa8421.a2aalerts.com
*.3a63ba14-8c95-4b90-be69-4fe3efa7f85a.a2aalerts.com
*.a.a2aalerts.com
a2aalerts.com
*.a2aalerts.com
*.account.a2aalerts.com
*.adm.a2aalerts.com
*.admin.a2aalerts.com
*.api.a2aalerts.com
*.app.a2aalerts.com
*.assets.a2aalerts.com
*.backend.a2aalerts.com
*.backup.a2aalerts.com
*.c31c1a80-2cd0-41b6-9a0d-2712cef2d211.a2aalerts.com
*.cloud.a2aalerts.com
*.clvnfrd.a2aalerts.com
*.cms.a2aalerts.com
*.dashboard.a2aalerts.com
*.demo.a2aalerts.com
*.dev.a2aalerts.com
*.gestao.a2aalerts.com
*.pop.a2aalerts.com
*.rd.a2aalerts.com
*.rds.a2aalerts.com
*.rdweb.a2aalerts.com
*.remote.a2aalerts.com
*.staging.a2aalerts.com
*.test.a2aalerts.com
*.uat.a2aalerts.com
*.vpn.a2aalerts.com
aperitivi.com
*.aperitivi.com
*.roc.aperitivi.com
azor.it
*.azor.it
*.cpanel.azor.it
*.webmail.azor.it
*.www.azor.it
camelseoteam.co
*.camelseoteam.co
*.mailgw.camelseoteam.co
*.shop.camelseoteam.co
*.testing.camelseoteam.co
*.a.clickmetro.com
clickmetro.com
*.clickmetro.com
*.forum.clickmetro.com
*.iutnb.clickmetro.com
*.old.clickmetro.com
*.users.clickmetro.com
*.m.md374xyz.top
md374xyz.top
*.md374xyz.top
moonmedicine.co
*.moonmedicine.co
*.chemical.nextalentiacareersolutions.com
nextalentiacareersolutions.com
*.nextalentiacareersolutions.com
*.test.nextalentiacareersolutions.com
osdus.zip
*.osdus.zip
*.com0smtp.realpool.eu
*.comautoconfig.realpool.eu
*.commailin2.realpool.eu
*.compop3.realpool.eu
*.comwebmail.realpool.eu
*.czautodiscover.realpool.eu
*.demine.realpool.eu
*.mail.realpool.eu
*.plts.realpool.eu
realpool.eu
*.realpool.eu
*.topmail.realpool.eu
rizefocus.com
*.rizefocus.com
rizeimpact.com
*.rizeimpact.com
scooter--e-scooter-ville-777.sbs
*.scooter--e-scooter-ville-777.sbs
solarpanelsolution.com
*.solarpanelsolution.com
*.admin.thenailloungelasvegas.com
*.agent.thenailloungelasvegas.com
thenailloungelasvegas.com
*.thenailloungelasvegas.com
*.webmail.thenailloungelasvegas.com
Other domains in certificate