Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=moduloacquisto.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 03, 2026
Valid Until
May 04, 2026
80 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B3:E5:F0:06:F5:6F:C3:4A:21:22:61:EC:95:B5:29:7E:DA:E0:2E:82:AE:A4:13:29:20:6A:95:16:C8:63:1F:1D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
thegreatleveler.com
*.thegreatleveler.com
*.colombia.dnschool.xyz
dnschool.xyz
*.dnschool.xyz
mg89.live
*.mg89.live
miraihenoshoutaijou.com
*.miraihenoshoutaijou.com
moduloacquisto.com
*.moduloacquisto.com
*.cloudvpn.muslim1.com
muslim1.com
*.muslim1.com
navigatincare.com
*.navigatincare.com
njn741p.cyou
*.njn741p.cyou
nvcasinobg.org
*.nvcasinobg.org
play-stellar-horizon.xyz
*.play-stellar-horizon.xyz
play-tide-territory.xyz
*.play-tide-territory.xyz
pleasingiris.com
*.pleasingiris.com
r1wr7366.com
*.r1wr7366.com
rakyat69.com
*.rakyat69.com
redtrailconsulting.com
*.redtrailconsulting.com
researchseek.com
*.researchseek.com
rutracker.in
*.rutracker.in
ryletech.com
*.ryletech.com
s6gadget.net
*.s6gadget.net
securetradedeals.cfd
*.securetradedeals.cfd
sell-s.com
*.sell-s.com
sharedagenda.org
*.sharedagenda.org
sinwarlifestyle.com
*.sinwarlifestyle.com
soldatcentral.com
*.soldatcentral.com
spamagnolias.com
*.spamagnolias.com
specpravapiter11.top
*.specpravapiter11.top
subtorrents.in
*.subtorrents.in
svtc-edtech.org
*.svtc-edtech.org
thufgs.top
*.thufgs.top
togetherweprofit.com
*.togetherweprofit.com
traveltowanderland.live
*.traveltowanderland.live
trip2hongkong.com
*.trip2hongkong.com
ultrabontu.com
*.ultrabontu.com
ustop10.com
*.ustop10.com
vip18677j.shop
*.vip18677j.shop
vip18677t.shop
*.vip18677t.shop
volunteerwashingtoncountymd.org
*.volunteerwashingtoncountymd.org
vws.cc
*.vws.cc
vxo9.com
*.vxo9.com
wateroakfarms.com
*.wateroakfarms.com
webandluxe.com
*.webandluxe.com
wingding5k.com
*.wingding5k.com
ylcke.co
*.ylcke.co
yxxgk.pro
*.yxxgk.pro
Other domains in certificate