Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=upcrunchplus.co
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 20, 2026
Valid Until
August 18, 2026
88 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9A:14:F7:10:21:F9:42:B3:AE:5A:36:05:64:2B:93:84:18:F2:0B:E6:D7:00:DA:00:30:66:F7:51:8C:08:5E:EE
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
mp3official.com
*.mp3official.com
*.binancextrade.mp3official.com
*.bitpelar.mp3official.com
*.com.mp3official.com
*.earnersdream.mp3official.com
*.gistlogs.mp3official.com
*.gowin-investment.mp3official.com
*.mp3officials.mp3official.com
*.officialjams.mp3official.com
*.www1.mp3official.com
*.www2.mp3official.com
*.www3.mp3official.com
*.54f07658-0486-4cf3-88ff-3d4084f3a0cc.enflight.design
*.5e2e132a-6084-47a0-b1a4-9a5dcaccb451.enflight.design
*.app.enflight.design
*.assets.enflight.design
*.bsvldrhj.enflight.design
*.c821087e-2524-4ae5-8aca-d78f2fbf75e7.enflight.design
*.demo.enflight.design
*.dev.enflight.design
enflight.design
*.enflight.design
*.ftp.enflight.design
*.fua6tn.enflight.design
*.hftywtest.enflight.design
*.hostmaster.enflight.design
*.m.enflight.design
*.mail.enflight.design
*.panel.enflight.design
*.sitemaps.enflight.design
*.ssh.enflight.design
*.8e01bca2-ebb0-4c1d-918e-41ecc3e2ace7.fetchasquadsboost.com
*.a.fetchasquadsboost.com
*.admin.fetchasquadsboost.com
*.api.fetchasquadsboost.com
*.assets.fetchasquadsboost.com
*.dashs.fetchasquadsboost.com
*.demo.fetchasquadsboost.com
*.dev.fetchasquadsboost.com
fetchasquadsboost.com
*.fetchasquadsboost.com
*.rd.fetchasquadsboost.com
*.remote.fetchasquadsboost.com
*.sduaerdweb.fetchasquadsboost.com
*.0nk.sd-af.com
*.0rl.sd-af.com
*.0sa.sd-af.com
*.0vg.sd-af.com
*.2ho.sd-af.com
*.2ms.sd-af.com
*.2zo.sd-af.com
*.5co.sd-af.com
*.6nd.sd-af.com
*.bdz9pf.sd-af.com
*.dvpbp.sd-af.com
*.mail.sd-af.com
*.p3hd3l.sd-af.com
*.pp0trj.sd-af.com
*.rtffd.sd-af.com
sd-af.com
*.sd-af.com
*.v4lrrp.sd-af.com
*.xnb.sd-af.com
*.zj7bfx.sd-af.com
*.apps.upcrunchplus.co
*.auth.upcrunchplus.co
*.blog.upcrunchplus.co
*.cpcalendars.upcrunchplus.co
*.demo.upcrunchplus.co
*.dev.upcrunchplus.co
*.email.upcrunchplus.co
*.erp.upcrunchplus.co
*.gw.upcrunchplus.co
*.help.upcrunchplus.co
*.home.upcrunchplus.co
*.magento.upcrunchplus.co
*.mail.upcrunchplus.co
*.mail5.upcrunchplus.co
*.mailserver.upcrunchplus.co
*.mx10.upcrunchplus.co
*.out.upcrunchplus.co
*.portal.upcrunchplus.co
*.post.upcrunchplus.co
*.server1.upcrunchplus.co
*.staging.upcrunchplus.co
upcrunchplus.co
*.upcrunchplus.co
*.v2.upcrunchplus.co
*.ww7.upcrunchplus.co
Other domains in certificate