Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=maniak.co
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 25, 2026
Valid Until
August 23, 2026
82 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
21:4C:D1:E5:6A:7A:52:B1:C4:D6:C7:40:A4:91:4B:0A:E3:E9:17:6A:34:CF:5F:4A:D0:23:85:85:8E:60:A2:03
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
nanren25.buzz
*.nanren25.buzz
*.e9f0g1h2.nanren25.buzz
123moviesc.co
*.123moviesc.co
*.ww4.123moviesc.co
*.wwv.123moviesc.co
appleid-apple.co
*.appleid-apple.co
*.login.appleid-apple.co
avtt112.cc
*.avtt112.cc
*.random.avtt112.cc
*.ww25.avtt112.cc
*.ww38.avtt112.cc
*.www.avtt112.cc
dirhe.org
*.dirhe.org
dresserroots.com
*.dresserroots.com
*.ado.eee.au
eee.au
*.eee.au
*.mdogoo.eee.au
*.sana.eee.au
hjabbef.com
*.hjabbef.com
*.ww25.hjabbef.com
*.app.inscricaoabertaencceja.com
inscricaoabertaencceja.com
*.inscricaoabertaencceja.com
*.www.inscricaoabertaencceja.com
kickstartfyxerhit.info
*.kickstartfyxerhit.info
*.wtov1q.kickstartfyxerhit.info
laibsgunsmithing.net
*.laibsgunsmithing.net
*.ww16.laibsgunsmithing.net
*.bittrexmkt.maniak.co
*.development.maniak.co
*.devopschallenge.maniak.co
*.gobrightfox.maniak.co
maniak.co
*.maniak.co
*.paralid.maniak.co
*.solvv.maniak.co
*.vercel.maniak.co
*.wb-velas.maniak.co
*.m.onenewspage.com.au
onenewspage.com.au
*.onenewspage.com.au
*.ww16.onenewspage.com.au
*.ww38.onenewspage.com.au
patgdut.com
*.patgdut.com
*.rustore.patgdut.com
*.aaa.patostreamy.com
*.api.patostreamy.com
*.app.patostreamy.com
*.backend.patostreamy.com
*.demo.patostreamy.com
*.dev.patostreamy.com
patostreamy.com
*.patostreamy.com
*.ww.patostreamy.com
*.ww12.patostreamy.com
*.www.patostreamy.com
seikousya.org
*.seikousya.org
sevgikoru.org
*.sevgikoru.org
*.www.sevgikoru.org
sunandseas.com
*.sunandseas.com
testsioeger.de
*.testsioeger.de
urj.au
*.urj.au
*.wildcard.urj.au
*.svzzq.videojournalclick.xyz
videojournalclick.xyz
*.videojournalclick.xyz
*.davidlevitan0.wpenginepowered.co
*.js.wpenginepowered.co
*.nau1.wpenginepowered.co
wpenginepowered.co
*.wpenginepowered.co
xn--mnnerzeitschrift-vnb.de
*.xn--mnnerzeitschrift-vnb.de
Other domains in certificate