Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=karmaorg.xyz
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
May 28, 2026
Valid Until
August 26, 2026
78 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A6:60:7B:87:06:61:3A:B2:67:62:CB:21:CD:1F:A8:8C:23:64:FE:B9:A1:D9:BE:10:5A:17:5C:6C:42:3E:87:96
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
mmisi.org
*.mmisi.org
*.dddd.mmisi.org
*.mmisi.mmisi.org
*.ww25.mmisi.org
*.ww38.mmisi.org
*.admin.an99.faith
*.alfabank.an99.faith
an99.faith
*.an99.faith
*.megamarket.an99.faith
*.ozon.an99.faith
*.assets.garagerepairnearme.info
*.d8dcbff6-5acc-4a9a-b78d-ba24da4cae57.garagerepairnearme.info
*.demo.garagerepairnearme.info
garagerepairnearme.info
*.garagerepairnearme.info
*.hmaygtdabutest.garagerepairnearme.info
*.netc-4a9a-b78d-ba24da4cae57.garagerepairnearme.info
*.ogeaqlkodvapi.garagerepairnearme.info
*.staging.garagerepairnearme.info
*.tdabutest.garagerepairnearme.info
*.test.garagerepairnearme.info
*.www.garagerepairnearme.info
*.alpha-analytics.h-d.app
h-d.app
*.h-d.app
*.mx.h-d.app
*.reporting.h-d.app
*.superset.h-d.app
*.www.h-d.app
*.39ir6.karmaorg.xyz
*.43ef61ca-d56b-4c7f-a2ef-6ae07dec5521.karmaorg.xyz
*.9cc207b4-481a-49ee-9cc9-7c6eea75e56d.karmaorg.xyz
*.dn930.karmaorg.xyz
*.hyyavo7p4x.karmaorg.xyz
*.igqlc.karmaorg.xyz
karmaorg.xyz
*.karmaorg.xyz
*.kp5po.karmaorg.xyz
*.lbcp6.karmaorg.xyz
*.nemln.karmaorg.xyz
*.qakt3.karmaorg.xyz
*.stg.karmaorg.xyz
*.vhakn.karmaorg.xyz
*.whecy87ab5.karmaorg.xyz
*.zlnyvvhakn.karmaorg.xyz
*.7d6f47f8-4800-4be2-9aa4-0eb39256a203.kinkycampingtools.com
*.api.kinkycampingtools.com
*.app.kinkycampingtools.com
*.backup.kinkycampingtools.com
*.cdaf7aa2-33a2-4b13-9eea-58ab7594c1d5.kinkycampingtools.com
*.dashboard.kinkycampingtools.com
*.dev.kinkycampingtools.com
kinkycampingtools.com
*.kinkycampingtools.com
*.mail.kinkycampingtools.com
*.mailer.kinkycampingtools.com
*.marketing.kinkycampingtools.com
*.qa.kinkycampingtools.com
*.secure.kinkycampingtools.com
*.server.kinkycampingtools.com
*.staging.kinkycampingtools.com
*.stg.kinkycampingtools.com
*.uat.kinkycampingtools.com
*.v1.kinkycampingtools.com
*.v2.kinkycampingtools.com
*.vpn.kinkycampingtools.com
*.vps.kinkycampingtools.com
*.web.kinkycampingtools.com
*.www.kinkycampingtools.com
*.access.lean-body.com
*.connect.lean-body.com
lean-body.com
*.lean-body.com
*.sslvpn.lean-body.com
*.admin.prestitoinrete.com
*.backend.prestitoinrete.com
*.mail.prestitoinrete.com
*.owa.prestitoinrete.com
prestitoinrete.com
*.prestitoinrete.com
*.remote.prestitoinrete.com
*.staging.prestitoinrete.com
*.www.prestitoinrete.com
*.api.trafficthief.io
*.app.trafficthief.io
trafficthief.io
*.trafficthief.io
Other domains in certificate