Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=facebookforbusinesses.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 13, 2026
Valid Until
May 14, 2026
88 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
62:FB:F5:7E:91:C1:13:E0:B5:65:E2:D4:7A:AA:08:F8:84:17:20:58:F9:AE:E4:2F:4E:C7:57:4F:CE:06:68:3D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
niceink.cc
*.niceink.cc
*.dw.niceink.cc
*.img.niceink.cc
*.mta-sts.niceink.cc
*.zg.niceink.cc
1628.net
*.1628.net
*.1c821e07-8465-4208-9673-5ca6b5de0ae1.1628.net
*.heilongjiang.1628.net
*.solotogrouptravrwww.1628.net
805769.club
*.805769.club
bagaceira.com
*.bagaceira.com
cames4.com
*.cames4.com
cisituindah.club
*.cisituindah.club
cnhbenfits.com
*.cnhbenfits.com
*.api.facebookforbusinesses.com
*.app.facebookforbusinesses.com
*.backend.facebookforbusinesses.com
*.demo.facebookforbusinesses.com
facebookforbusinesses.com
*.facebookforbusinesses.com
findgupy.online
*.findgupy.online
freshgooglenews.com
*.freshgooglenews.com
hiddenproject.store
*.hiddenproject.store
hopelfynn.com
*.hopelfynn.com
insgressos.com
*.insgressos.com
limtorrent.com
*.limtorrent.com
*.admin.lookbookcreations.com
lookbookcreations.com
*.lookbookcreations.com
*.apple.mireporte.com
mireporte.com
*.mireporte.com
mlwarebytes.com
*.mlwarebytes.com
*.ww16.mlwarebytes.com
*.ww38.mlwarebytes.com
obcawaaz.co
*.obcawaaz.co
ook-mobile.com
*.ook-mobile.com
oraclecademy.com
*.oraclecademy.com
patrixresource.com
*.patrixresource.com
radiounicalaplata.com
*.radiounicalaplata.com
*.sitio2018.radiounicalaplata.com
*.webdisk.radiounicalaplata.com
*.archivio.stato.it
*.archiviodistatoricerca.stato.it
*.avvocatura.stato.it
*.c1.stato.it
*.consiglio.stato.it
*.di.stato.it
*.dj.stato.it
*.fielmann.stato.it
*.generale.stato.it
*.milanocitta.stato.it
*.ni.stato.it
*.polizadi.stato.it
*.polizia.stato.it
*.poliziad.stato.it
*.poliziadi.stato.it
*.random.stato.it
*.staging.stato.it
stato.it
*.stato.it
*.zecca.stato.it
talkbootspharmacy.com
*.talkbootspharmacy.com
*.api.terribile.com
terribile.com
*.terribile.com
*.api.vuasanca.bet
*.mail.vuasanca.bet
vuasanca.bet
*.vuasanca.bet
Other domains in certificate