Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=wish-u.live
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 03, 2026
Valid Until
August 01, 2026
80 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
2D:D3:44:1E:F0:26:A2:34:C9:5E:7F:66:D8:D0:F4:F4:3D:9E:AB:E3:E6:3F:A6:1F:12:5B:B3:B4:BE:28:FC:5F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
oopsie.au
*.oopsie.au
acquapugliese.com
*.acquapugliese.com
*.admin.acquapugliese.com
*.analytic.acquapugliese.com
*.api.acquapugliese.com
*.app.acquapugliese.com
*.backend.acquapugliese.com
*.dev.acquapugliese.com
*.mail2.acquapugliese.com
*.workflow.acquapugliese.com
aimarketing-official.site
*.aimarketing-official.site
*.dashboard.aimarketing-official.site
*.random.aimarketing-official.site
capitolmortgage.com
*.capitolmortgage.com
*.files.capitolmortgage.com
*.info.capitolmortgage.com
*.ns2.capitolmortgage.com
*.store.capitolmortgage.com
*.users.capitolmortgage.com
*.whois.capitolmortgage.com
*.ads.fencebook.com
*.community.fencebook.com
*.comune.fencebook.com
*.crm.fencebook.com
*.d.fencebook.com
fencebook.com
*.fencebook.com
*.health.fencebook.com
*.help.fencebook.com
*.katalog.fencebook.com
*.member.fencebook.com
*.old.fencebook.com
*.poczta.fencebook.com
*.random.fencebook.com
*.sip.fencebook.com
*.start.fencebook.com
*.survey.fencebook.com
*.tickets.fencebook.com
*.ufa.fencebook.com
*.users.fencebook.com
film7media.com
*.film7media.com
*.ww01.film7media.com
genus.my
*.genus.my
*.webdisk.genus.my
*.webmail.genus.my
*.whm.genus.my
idbady.com
*.idbady.com
*.m.idbady.com
*.www.idbady.com
*.cpcontacts.irecover.co
irecover.co
*.irecover.co
*.mx.irecover.co
*.random.irecover.co
*.www.irecover.co
*.admin.kalca.it
*.app.kalca.it
*.dashboard.kalca.it
*.demo.kalca.it
*.hostmaster.kalca.it
kalca.it
*.kalca.it
*.mx.kalca.it
*.redash.kalca.it
*.remote.kalca.it
*.reporting.kalca.it
*.staging.kalca.it
*.superset.kalca.it
*.app.maltipoo.com
*.m.maltipoo.com
maltipoo.com
*.maltipoo.com
*.random.maltipoo.com
okoubaka-globuli.de
*.okoubaka-globuli.de
*.sitemaps.supermpoai.com
supermpoai.com
*.supermpoai.com
*.feature.wish-u.live
*.sonicmaster.wish-u.live
wish-u.live
*.wish-u.live
*.www.wish-u.live
Other domains in certificate