Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=san999.vip
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 07, 2026
Valid Until
August 05, 2026
56 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CD:D2:85:7D:05:7D:EE:B3:31:E8:BA:D8:60:87:63:2C:91:98:76:A5:D9:B2:C8:A5:12:88:B4:4F:98:AC:FB:57
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
jdkg.xyz
*.jdkg.xyz
*.ao3.jdkg.xyz
*.api3.jdkg.xyz
*.bk2.jdkg.xyz
*.blog.jdkg.xyz
*.gent.jdkg.xyz
*.mirror.jdkg.xyz
*.myrbcapi3.jdkg.xyz
*.nginxagent.jdkg.xyz
*.test2.jdkg.xyz
*.ww25.jdkg.xyz
*.ww38.jdkg.xyz
bantengmerahmaxwin.xyz
*.bantengmerahmaxwin.xyz
*.www.bantengmerahmaxwin.xyz
blackkettleretrievers.com
*.blackkettleretrievers.com
*.random.blackkettleretrievers.com
buttonvalver.shop
*.buttonvalver.shop
*.ww38.buttonvalver.shop
charaknursinghome.com
*.charaknursinghome.com
*.cpcontacts.charaknursinghome.com
*.mail.charaknursinghome.com
classicbeta.net
*.classicbeta.net
*.ww25.classicbeta.net
*.ww38.classicbeta.net
conceptmoler.space
*.conceptmoler.space
*.beta.dynastyfamilyrestaurant.com
*.demo.dynastyfamilyrestaurant.com
dynastyfamilyrestaurant.com
*.dynastyfamilyrestaurant.com
*.galeria.dynastyfamilyrestaurant.com
*.hr.dynastyfamilyrestaurant.com
*.integration.dynastyfamilyrestaurant.com
*.magento.dynastyfamilyrestaurant.com
*.p.dynastyfamilyrestaurant.com
*.sitemap.dynastyfamilyrestaurant.com
*.sitemaps.dynastyfamilyrestaurant.com
*.sms.dynastyfamilyrestaurant.com
*.social.dynastyfamilyrestaurant.com
*.ww16.dynastyfamilyrestaurant.com
*.ww38.dynastyfamilyrestaurant.com
igourmetyt.shop
*.igourmetyt.shop
*.ww38.igourmetyt.shop
*.cdn.mp3crown.club
*.maps.mp3crown.club
mp3crown.club
*.mp3crown.club
*.sitemaps.mp3crown.club
*.ww25.mp3crown.club
*.dgw.pag-ibigfundservices.com
*.hostmaster.pag-ibigfundservices.com
*.mx7.pag-ibigfundservices.com
*.ns1.pag-ibigfundservices.com
*.ns2.pag-ibigfundservices.com
pag-ibigfundservices.com
*.pag-ibigfundservices.com
*.www.pag-ibigfundservices.com
*.32.pagalpro.com
pagalpro.com
*.pagalpro.com
*.32.san999.vip
san999.vip
*.san999.vip
scratchily.sbs
*.scratchily.sbs
selaludidepan.store
*.selaludidepan.store
*.ww38.selaludidepan.store
*.32.sexhd.asia
sexhd.asia
*.sexhd.asia
szol.store
*.szol.store
*.targetemail.welcome-mail-bismedias.com
welcome-mail-bismedias.com
*.welcome-mail-bismedias.com
*.ww38.yazhouse.xyz
yazhouse.xyz
*.yazhouse.xyz
*.ww38.ydxrf.xyz
ydxrf.xyz
*.ydxrf.xyz
Other domains in certificate