Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=0v3rfl0.ws
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
June 03, 2026
Valid Until
September 01, 2026
80 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0D:BC:49:9C:D5:7D:52:81:1A:6A:70:E0:B9:7A:51:A0:55:4E:80:3B:60:04:7D:D4:09:37:60:01:35:DA:CE:56
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
mindezign.com
*.mindezign.com
0v3rfl0.ws
*.0v3rfl0.ws
discovrer.com
*.discovrer.com
drdagimedical.com
*.drdagimedical.com
dryvegetables.in
*.dryvegetables.in
ds40025.cc
*.ds40025.cc
e64d.cyou
*.e64d.cyou
environments.io
*.environments.io
evkr.org
*.evkr.org
expoafiliados.com
*.expoafiliados.com
goldenvibrance.com
*.goldenvibrance.com
goldenvocabulary.com
*.goldenvocabulary.com
highestsite.top
*.highestsite.top
hotfries.com
*.hotfries.com
*.iogrcw.ivvmm.com
ivvmm.com
*.ivvmm.com
jjrflw01.xyz
*.jjrflw01.xyz
jkasd9237nmzxlaslqpwoeiruas.top
*.jkasd9237nmzxlaslqpwoeiruas.top
jpdesignsllc.net
*.jpdesignsllc.net
kedemitcoffee.com
*.kedemitcoffee.com
kk88.pro
*.kk88.pro
klyv.tech
*.klyv.tech
ky8722.cc
*.ky8722.cc
lignosilicon.com
*.lignosilicon.com
livpanou.com
*.livpanou.com
logr.xyz
*.logr.xyz
mdovy.co
*.mdovy.co
microbiomesynthetics.com
*.microbiomesynthetics.com
nbnkh.top
*.nbnkh.top
nextgenoutreach.com
*.nextgenoutreach.com
nfsc.app
*.nfsc.app
nfsc.news
*.nfsc.news
palaeoherpetologist.com
*.palaeoherpetologist.com
play-fashion.xyz
*.play-fashion.xyz
recouperation.com
*.recouperation.com
rofx.club
*.rofx.club
rwidf.org
*.rwidf.org
sexytor.net
*.sexytor.net
sonamutv49.net
*.sonamutv49.net
sp2vapes.com
*.sp2vapes.com
sri168.click
*.sri168.click
sundjerbob.com
*.sundjerbob.com
temporaneousness.com
*.temporaneousness.com
tomorrowss.com
*.tomorrowss.com
zqj.in
*.zqj.in
Other domains in certificate