Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=auricanna.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 23, 2026
Valid Until
August 21, 2026
77 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4C:C0:C8:14:CB:B9:3A:50:D5:FE:F8:10:B7:41:78:3C:EE:63:5D:99:05:A2:D7:12:9C:72:12:3B:88:3D:6F:59
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
ofmsn.net
*.ofmsn.net
auricanna.com
*.auricanna.com
awesomeanimal.com
*.awesomeanimal.com
boxiangwl.cn
*.boxiangwl.cn
brmkk.work
*.brmkk.work
bvcapital.co
*.bvcapital.co
careerempowermentnexus.xyz
*.careerempowermentnexus.xyz
cari-arah4d.my
*.cari-arah4d.my
clickalert.vip
*.clickalert.vip
coachbencareers.com
*.coachbencareers.com
cslogistik.com
*.cslogistik.com
cuz.lol
*.cuz.lol
czemjvt432.vip
*.czemjvt432.vip
darialemeshkin.info
*.darialemeshkin.info
devil138super.com
*.devil138super.com
dewa505jp.my
*.dewa505jp.my
imagenmendez.com
*.imagenmendez.com
ineedtofindthegap.com
*.ineedtofindthegap.com
lahirukas.com
*.lahirukas.com
lanpeeking.com
*.lanpeeking.com
leyjaypharm.com
*.leyjaypharm.com
loeiuytb.sbs
*.loeiuytb.sbs
mtechcommerce.com
*.mtechcommerce.com
mysticspace136.top
*.mysticspace136.top
new88a6.vip
*.new88a6.vip
new88a8.vip
*.new88a8.vip
onlinecasinobonus.top
*.onlinecasinobonus.top
onlinecasinoonline.top
*.onlinecasinoonline.top
onlinegamblingcasinorealmoney.top
*.onlinegamblingcasinorealmoney.top
onlinegameforge.com
*.onlinegameforge.com
pawanbishnoi.bike
*.pawanbishnoi.bike
pethub.au
*.pethub.au
pida.pro
*.pida.pro
playcasinoonlinerealmoney.top
*.playcasinoonlinerealmoney.top
playrealcasinoonline.top
*.playrealcasinoonline.top
rosescanyon.com
*.rosescanyon.com
shindemangowale.in
*.shindemangowale.in
spencerconnectbot.com
*.spencerconnectbot.com
spencerdispatch.com
*.spencerdispatch.com
sportstrackzone.sbs
*.sportstrackzone.sbs
vdaypremierwellness.com
*.vdaypremierwellness.com
villagesdeville.com
*.villagesdeville.com
vintagehifiav.com
*.vintagehifiav.com
vulcan24-casinos.cfd
*.vulcan24-casinos.cfd
yamoa21.com
*.yamoa21.com
Other domains in certificate