Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=efund.club
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 24, 2026
Valid Until
August 22, 2026
69 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
42:56:67:64:24:F7:B6:9C:CB:D0:DD:43:17:E1:6A:07:F4:45:FB:7C:EE:7A:4E:CD:36:55:6D:43:46:F4:F8:0C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
nestpt.co
*.nestpt.co
*.ww38.nestpt.co
123moviezfree.com
*.123moviezfree.com
*.admin.123moviezfree.com
*.caregivers.123moviezfree.com
*.dev.123moviezfree.com
*.docker-registry.123moviezfree.com
*.playground.123moviezfree.com
bitcoinpro.click
*.bitcoinpro.click
*.developers.bitcoinpro.click
*.imap.bitcoinpro.click
*.mailex.bitcoinpro.click
*.unistream.bitcoinpro.click
*.web02.bitcoinpro.click
*.webmin.bitcoinpro.click
bonnovi.com
*.bonnovi.com
doctorareej.com
*.doctorareej.com
*.prod.doctorareej.com
efund.club
*.efund.club
*.hostmaster.efund.club
*.kubeflow-pipeline.efund.club
*.map.efund.club
*.random.efund.club
*.report.efund.club
*.sitemaps.efund.club
*.www.efund.club
*.dev.gjfkr39152.xyz
gjfkr39152.xyz
*.gjfkr39152.xyz
*.laravel.gjfkr39152.xyz
*.mail.gjfkr39152.xyz
*.s3.gjfkr39152.xyz
hotellafayettenice.com
*.hotellafayettenice.com
*.mail.hotellafayettenice.com
*.admin.longaretti.it
*.dev.longaretti.it
longaretti.it
*.longaretti.it
*.blog.mcshield.net
*.br.mcshield.net
*.en.mcshield.net
mcshield.net
*.mcshield.net
*.ns27.mcshield.net
*.ns29.mcshield.net
*.ns60.mcshield.net
*.ns62.mcshield.net
*.servizioclienti.mcshield.net
*.storage.mcshield.net
*.web.mcshield.net
*.ww17.mcshield.net
*.ww38.mcshield.net
*.www.mcshield.net
nierenratgeber.de
*.nierenratgeber.de
*.ww16.nierenratgeber.de
*.aenaaeropuert.os.eu
*.betaniatanureassociad.os.eu
*.ferrovialaeropuert.os.eu
*.keypaypagament.os.eu
os.eu
*.os.eu
*.primepr.os.eu
*.promotoraibericadenegoci.os.eu
*.ar.questdiagnostocs.com
*.autodiscover.questdiagnostocs.com
*.flow.questdiagnostocs.com
questdiagnostocs.com
*.questdiagnostocs.com
*.random.questdiagnostocs.com
*.ww25.questdiagnostocs.com
*.mxs.sanbiagio.com
*.oratoriosanluigi.sanbiagio.com
*.random.sanbiagio.com
sanbiagio.com
*.sanbiagio.com
*.sitemap.sanbiagio.com
*.sitemaps.sanbiagio.com
*.vpn.sanbiagio.com
*.ww1.sanbiagio.com
*.ww16.sanbiagio.com
*.ww25.sanbiagio.com
*.ww38.sanbiagio.com
Other domains in certificate