Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=magicpixai.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 01, 2026
Valid Until
July 30, 2026
41 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
01:9A:58:2E:2E:3B:AC:C8:39:4C:8F:08:3F:6C:4B:55:75:C4:6E:D4:A4:F2:4D:19:62:8E:9D:EC:76:6D:B1:DC
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
nerdthings.com
*.nerdthings.com
*.mail.nerdthings.com
amaccess.biz
*.amaccess.biz
*.biz.amaccess.biz
*.dev.amaccess.biz
*.tnbultpmurpanel.amaccess.biz
carla.au
*.carla.au
circek.com
*.circek.com
*.desktops2.circek.com
*.ww1.circek.com
converito.co
*.converito.co
*.ww25.converito.co
*.ww38.converito.co
*.www.converito.co
*.app.drolvink.cfd
drolvink.cfd
*.drolvink.cfd
*.staging.drolvink.cfd
*.www.drolvink.cfd
*.32yourinformations-updatesxfnty.filateliaandorrana.net
*.anyconnect.filateliaandorrana.net
*.cloudvpn.filateliaandorrana.net
*.connect.filateliaandorrana.net
filateliaandorrana.net
*.filateliaandorrana.net
*.firewall.filateliaandorrana.net
*.ipv4.filateliaandorrana.net
*.03836b47-fa58-4c85-b415-f88afc9e9cda.magicpixai.com
*.0d819c53-1f9b-4d42-888b-e56c01d9cc06.magicpixai.com
*.29f338f8-2dd4-4ce9-bdb5-a25b703e7f84.magicpixai.com
*.89bd6200-b647-40aa-8f6b-c18942b8eb5b.magicpixai.com
*.a.magicpixai.com
*.admin.magicpixai.com
*.api.magicpixai.com
*.app.magicpixai.com
*.apps.magicpixai.com
*.aslcastg.magicpixai.com
*.assets.magicpixai.com
*.backup.magicpixai.com
*.dashboard.magicpixai.com
*.demo.magicpixai.com
*.dev.magicpixai.com
*.fbacacfe-de96-43a8-8d61-9f80fab76ebe.magicpixai.com
*.kailoems.magicpixai.com
magicpixai.com
*.magicpixai.com
*.mail.magicpixai.com
*.mailer.magicpixai.com
*.marketing.magicpixai.com
*.qa.magicpixai.com
*.secure.magicpixai.com
*.staging.magicpixai.com
*.stg.magicpixai.com
*.uat.magicpixai.com
*.v1.magicpixai.com
*.v2.magicpixai.com
*.web.magicpixai.com
*.www.magicpixai.com
manga1001.club
*.manga1001.club
*.random.manga1001.club
orabel.au
*.orabel.au
*.random.orabel.au
petlawyer.au
*.petlawyer.au
*.random.petlawyer.au
*.62gqwu.thecoldlbsz.com
*.admin.thecoldlbsz.com
*.staging.thecoldlbsz.com
thecoldlbsz.com
*.thecoldlbsz.com
*.vpn.thecoldlbsz.com
*.www.thecoldlbsz.com
tinyzonetv.net
*.tinyzonetv.net
*.web.tinyzonetv.net
*.8h3mp2.trafficplusoffer.info
*.api.trafficplusoffer.info
*.backup.trafficplusoffer.info
*.secure.trafficplusoffer.info
*.staging.trafficplusoffer.info
*.test.trafficplusoffer.info
trafficplusoffer.info
*.trafficplusoffer.info
Other domains in certificate