Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=openeconomy.media
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 24, 2026
Valid Until
August 22, 2026
59 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E9:E9:E1:8F:03:C6:3C:87:A9:48:D2:72:7C:3D:C2:BE:A2:1C:05:C7:43:C9:25:4A:43:08:46:13:B6:5B:A2:81
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
diskilltech.com
*.diskilltech.com
*.eduxma.diskilltech.com
*.hadassahschool.diskilltech.com
*.mpis.diskilltech.com
*.rojemschool.diskilltech.com
*.salespoint.diskilltech.com
*.wingateschools.diskilltech.com
bordetella-pertussis.de
*.bordetella-pertussis.de
*.ww38.bordetella-pertussis.de
divabots.com
*.divabots.com
*.portal.divabots.com
*.www.divabots.com
dogmovies.net
*.dogmovies.net
*.ww16.dogmovies.net
*.ww25.dogmovies.net
*.ww6.dogmovies.net
educatekids.online
*.educatekids.online
enterprisearchitecture.com.au
*.enterprisearchitecture.com.au
evaporating.com
*.evaporating.com
flocons.studio
*.flocons.studio
*.br104.godns.cloud
*.dns110.godns.cloud
*.dns111.godns.cloud
godns.cloud
*.godns.cloud
gravtyforms.com
*.gravtyforms.com
incrediblegiftfinds.com
*.incrediblegiftfinds.com
*.0d2c765b-a67c-47a7-9ac3-f95908f3a8a5.ky-industries.art
*.5e5e86b9-149f-4834-ac08-fea7bff7362c.ky-industries.art
*.89317090-8894-4016-af95-ce1c34931ed3.ky-industries.art
*.dev.ky-industries.art
*.hr.ky-industries.art
ky-industries.art
*.ky-industries.art
*.office.ky-industries.art
*.vpn.ky-industries.art
maanvisurveys.com
*.maanvisurveys.com
manareels.com
*.manareels.com
*.com.moiua.com
moiua.com
*.moiua.com
oldham.com.au
*.oldham.com.au
*.staging.oldham.com.au
*.uat.oldham.com.au
*.admin.openeconomy.media
*.api.openeconomy.media
*.crypto.openeconomy.media
*.email.openeconomy.media
*.finance.openeconomy.media
openeconomy.media
*.openeconomy.media
*.remote.openeconomy.media
portogelmania.info
*.portogelmania.info
*.ww38.portogelmania.info
ramblingsmalltowngirl.com
*.ramblingsmalltowngirl.com
retep.online
*.retep.online
simuladordetaxas.com
*.simuladordetaxas.com
*.ww25.simuladordetaxas.com
*.e57pus.spiritualiteauquotidien.com
spiritualiteauquotidien.com
*.spiritualiteauquotidien.com
sqti.com
*.sqti.com
*.sitemap.vurzdravie.click
vurzdravie.click
*.vurzdravie.click
*.www.vurzdravie.click
wimpernverlaengerungen-leipzig.de
*.wimpernverlaengerungen-leipzig.de
xocoa-bcn.com
*.xocoa-bcn.com
youngcoffee.site
*.youngcoffee.site
Other domains in certificate