Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=panacear.com
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
June 03, 2026
Valid Until
September 01, 2026
81 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
70:A2:1E:7C:D7:F9:5F:DC:6D:DB:26:6F:A5:67:64:20:9C:9D:1B:3C:4D:73:37:76:DC:94:CE:E6:0C:0B:FD:D3
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
fontsquirell.com
*.fontsquirell.com
*.gallery.fontsquirell.com
*.mx01.fontsquirell.com
*.ww25.fontsquirell.com
applesees.com
*.applesees.com
*.chat.applesees.com
*.lms.applesees.com
*.members.applesees.com
*.neighborfeedback.applesees.com
*.neighforhoodfeedback.applesees.com
*.support.applesees.com
*.ww38.applesees.com
*.cicd.collegescholarshipsapplicationtips.site
collegescholarshipsapplicationtips.site
*.collegescholarshipsapplicationtips.site
*.data.collegescholarshipsapplicationtips.site
*.siteww38.collegescholarshipsapplicationtips.site
*.superset.collegescholarshipsapplicationtips.site
*.4qsbra.epiktravelagent.com
*.73d4b4ff-9e75-48d4-b372-2aeacd718203.epiktravelagent.com
*.af1b3b04-3a2f-4b64-9804-0a4ffc1d3854.epiktravelagent.com
*.assets.epiktravelagent.com
*.e5c042d7-3f63-4012-b147-8981a995a3e3.epiktravelagent.com
epiktravelagent.com
*.epiktravelagent.com
*.hostmaster.epiktravelagent.com
*.vpn.epiktravelagent.com
*.analytic.gamefantasy.it
*.analyze.gamefantasy.it
*.bi.gamefantasy.it
*.bigdata.gamefantasy.it
*.dashboard.gamefantasy.it
*.dashs.gamefantasy.it
gamefantasy.it
*.gamefantasy.it
*.report.gamefantasy.it
*.staging.gamefantasy.it
*.uat.gamefantasy.it
*.2bftgz.holitreat.com
*.36517b65-b0cb-4d4e-8989-a25ea0e23bbc.holitreat.com
*.app.holitreat.com
*.backup.holitreat.com
holitreat.com
*.holitreat.com
ketaminedrop.com
*.ketaminedrop.com
*.parked.ketaminedrop.com
panacear.com
*.panacear.com
*.rdp.panacear.com
*.162.scoteblue.com
*.2164bbfa-11c7-4672-a2e2-66b8523afe65.scoteblue.com
*.24.scoteblue.com
*.aaron.scoteblue.com
*.baf3848c-202e-424d-adba-70a910fde158.scoteblue.com
*.cloud.scoteblue.com
*.dev.scoteblue.com
*.insight.scoteblue.com
*.intranet.scoteblue.com
*.mail.scoteblue.com
*.portal.scoteblue.com
*.random.scoteblue.com
*.rd.scoteblue.com
*.rds.scoteblue.com
*.rdweb.scoteblue.com
*.remote.scoteblue.com
scoteblue.com
*.scoteblue.com
*.shop.scoteblue.com
*.store.scoteblue.com
*.vpn.scoteblue.com
*.www.scoteblue.com
*.www4.scoteblue.com
*.com.whitepinestructure.com
whitepinestructure.com
*.whitepinestructure.com
*.ausm.xn--nwwv50h.com
*.preview.xn--nwwv50h.com
*.sl-m-ssl.xn--nwwv50h.com
xn--nwwv50h.com
*.xn--nwwv50h.com
*.0ie9vb.xxhua.xyz
*.32o8m0.xxhua.xyz
*.3l5yz1.xxhua.xyz
*.4ibmt1.xxhua.xyz
*.5le8uv.xxhua.xyz
xxhua.xyz
*.xxhua.xyz
Other domains in certificate