Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=desertrollercoaster.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 27, 2026
Valid Until
July 26, 2026
64 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
87:6A:4E:9C:54:8F:7F:AE:34:D6:D4:04:EE:78:D9:79:1E:CB:56:BD:29:3A:65:84:A5:D9:FD:0D:C3:1E:5F:BB
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
av86.info
*.av86.info
*.cloud.av86.info
*.club.av86.info
*.co.av86.info
*.com.av86.info
*.top.av86.info
*.tw.av86.info
*.vip.av86.info
*.xyz.av86.info
*.5jsd7.appaw5.xyz
*.60t9v.appaw5.xyz
*.95vhx.appaw5.xyz
*.96c54.appaw5.xyz
appaw5.xyz
*.appaw5.xyz
*.assets.appaw5.xyz
*.dbaf36f5-4964-4563-896f-4ea9ec51e062.appaw5.xyz
*.demo.appaw5.xyz
*.development.appaw5.xyz
*.fcvkr.appaw5.xyz
*.g89kw.appaw5.xyz
*.guru-4563-896f-4ea9ec51e062.appaw5.xyz
*.kwid9.appaw5.xyz
*.lbcp6.appaw5.xyz
*.magento.appaw5.xyz
*.mailer.appaw5.xyz
*.ndifg.appaw5.xyz
*.nxc75.appaw5.xyz
*.pp4gk.appaw5.xyz
*.qdiek.appaw5.xyz
*.rczhl.appaw5.xyz
*.rnyzj.appaw5.xyz
*.svzzq.appaw5.xyz
bet20casino-bonuses.com
*.bet20casino-bonuses.com
*.cloud.bet20casino-bonuses.com
*.rd.bet20casino-bonuses.com
*.rds.bet20casino-bonuses.com
*.rdweb.bet20casino-bonuses.com
*.remote.bet20casino-bonuses.com
*.comune.cozycreeklogcabin.com
cozycreeklogcabin.com
*.cozycreeklogcabin.com
*.473d3674-9429-4a41-ba9d-17a3d55d70f5.desertrollercoaster.com
*.736a29bf-e049-419b-89be-ac941b653685.desertrollercoaster.com
*.admin.desertrollercoaster.com
*.analytic.desertrollercoaster.com
*.app.desertrollercoaster.com
*.assets.desertrollercoaster.com
*.b916a9d5-b73d-4325-865e-4e78442a9265.desertrollercoaster.com
*.cloud.desertrollercoaster.com
desertrollercoaster.com
*.desertrollercoaster.com
*.dev.desertrollercoaster.com
*.drive.desertrollercoaster.com
*.gate.desertrollercoaster.com
*.hostmaster.desertrollercoaster.com
*.portal.desertrollercoaster.com
*.rd.desertrollercoaster.com
*.rds.desertrollercoaster.com
*.rdweb.desertrollercoaster.com
*.remote.desertrollercoaster.com
*.test.desertrollercoaster.com
*.txgonanalytic.desertrollercoaster.com
*.cian.planadd.icu
*.ftpd.planadd.icu
*.imapd.planadd.icu
*.inecobank.planadd.icu
*.kazpost.planadd.icu
*.megamarket.planadd.icu
planadd.icu
*.planadd.icu
*.ponyexpress.planadd.icu
*.mail.wineality.com
wineality.com
*.wineality.com
*.api.zhimaxi.com
*.app.zhimaxi.com
*.backend.zhimaxi.com
*.bbs.zhimaxi.com
*.demo.zhimaxi.com
*.dev.zhimaxi.com
*.random.zhimaxi.com
*.staging.zhimaxi.com
*.ww1.zhimaxi.com
*.ww12.zhimaxi.com
*.www.zhimaxi.com
zhimaxi.com
*.zhimaxi.com
Other domains in certificate