Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=macallan.cc
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
January 31, 2026
Valid Until
May 01, 2026
64 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
EC:D1:B0:C1:CA:80:29:AD:EA:F1:21:23:C7:7D:2B:29:19:F4:11:CA:4A:F7:00:C2:F5:29:D7:41:2F:EA:76:CF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
nhata.com
*.nhata.com
*.store.nhata.com
balhara.com
*.balhara.com
*.vpn.balhara.com
*.ww25.balhara.com
banconet.com
*.banconet.com
*.mailer.banconet.com
*.web.banconet.com
*.ww11.banconet.com
*.ww16.banconet.com
*.amr.eissa.com
eissa.com
*.eissa.com
*.11cdbe0f-6f68-427b-9a34-c5688d550fcc.glsses.com
*.admin.glsses.com
*.analysis.glsses.com
*.api.glsses.com
*.app.glsses.com
*.backend.glsses.com
*.beta.glsses.com
*.blog.glsses.com
*.campanha.glsses.com
*.ci.glsses.com
*.cpanel.glsses.com
*.crm.glsses.com
*.demo.glsses.com
*.emv1.glsses.com
*.forum.glsses.com
glsses.com
*.glsses.com
*.help.glsses.com
*.hostmaster.glsses.com
*.insights.glsses.com
*.intranet.glsses.com
*.kiahjwp.glsses.com
*.m.glsses.com
*.nav.glsses.com
*.portal.glsses.com
*.rd.glsses.com
*.shop.glsses.com
*.store.glsses.com
*.superset.glsses.com
*.uat.glsses.com
*.vpn.glsses.com
*.web.glsses.com
*.wiki.glsses.com
*.www.glsses.com
*.zoxpabeta.glsses.com
*.ebay.jalanan.com
jalanan.com
*.jalanan.com
*.ebay.joshbates.com
joshbates.com
*.joshbates.com
*.co.macallan.cc
macallan.cc
*.macallan.cc
*.ww38.macallan.cc
*.dsgbeautyproductmavishub.mumtime.com.au
*.mavishub.mumtime.com.au
mumtime.com.au
*.mumtime.com.au
mymtc.com
*.mymtc.com
*.w.mymtc.com
*.ww16.mymtc.com
*.cat.nnaemeka.com
*.cdn.nnaemeka.com
*.china.nnaemeka.com
*.ci.nnaemeka.com
*.comune.nnaemeka.com
*.facebook.nnaemeka.com
*.fashion.nnaemeka.com
*.fr.nnaemeka.com
*.hostmaster.nnaemeka.com
*.j.nnaemeka.com
*.mobile.nnaemeka.com
nnaemeka.com
*.nnaemeka.com
*.orji.nnaemeka.com
*.shopping.nnaemeka.com
*.users.nnaemeka.com
*.ww25.nnaemeka.com
politologo.com
*.politologo.com
*.wiki.politologo.com
*.ww38.politologo.com
Other domains in certificate