Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=pemula73.click
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 04, 2026
Valid Until
May 05, 2026
73 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3B:81:0D:20:B6:75:EB:A4:2B:B1:45:16:E1:D5:D2:BE:DC:39:9A:EE:62:1E:0C:52:E5:02:BF:FA:9C:09:E2:BE
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
87 domains
osamaalsafi.com
*.osamaalsafi.com
*.mail.osamaalsafi.com
*.sitemap.osamaalsafi.com
*.ww41.osamaalsafi.com
*.autoconfig.cmibet.xyz
cmibet.xyz
*.cmibet.xyz
*.webmail.cmibet.xyz
*.blog.coonlights.com
coonlights.com
*.coonlights.com
*.ww16.coonlights.com
*.ww25.coonlights.com
*.ww38.coonlights.com
crypto-capitalist.info
*.crypto-capitalist.info
*.ww38.crypto-capitalist.info
fichi.com
*.fichi.com
*.vslgl.fichi.com
gretabeauty.co
*.gretabeauty.co
*.www.gretabeauty.co
*.cpanel.hydecors.com
hydecors.com
*.hydecors.com
*.www.hydecors.com
*.api.kent.bet
kent.bet
*.kent.bet
*.art.krizy.com
krizy.com
*.krizy.com
*.sitemap.krizy.com
*.tools.krizy.com
lw-1.com
*.lw-1.com
*.m.lw-1.com
*.1bea1a47-d234-4652-bc12-434d56f083e0.pemula73.click
pemula73.click
*.pemula73.click
*.ww25.pemula73.click
polaorigacor.com
*.polaorigacor.com
*.wap.polaorigacor.com
*.webdav.polaorigacor.com
poljak.com
*.poljak.com
*.ww17.poljak.com
*.ww38.poljak.com
*.mx.protectiondogsforsale.com
protectiondogsforsale.com
*.protectiondogsforsale.com
*.analytics.revolutionatseagulls.com.au
*.cpanel.revolutionatseagulls.com.au
*.e.revolutionatseagulls.com.au
*.mail.revolutionatseagulls.com.au
revolutionatseagulls.com.au
*.revolutionatseagulls.com.au
*.webmail.revolutionatseagulls.com.au
*.ww25.revolutionatseagulls.com.au
*.ww38.revolutionatseagulls.com.au
*.www.revolutionatseagulls.com.au
*.cpanel.rtp-bolaslot88.bet
rtp-bolaslot88.bet
*.rtp-bolaslot88.bet
usta.pro
*.usta.pro
*.email.wellbeingthroughwork.org.uk
*.mail.wellbeingthroughwork.org.uk
wellbeingthroughwork.org.uk
*.wellbeingthroughwork.org.uk
win101.vip
*.win101.vip
*.blog.windbo.com
*.ulddtapp.windbo.com
*.v2.windbo.com
windbo.com
*.windbo.com
*.maptiles.xarosa.online
*.wsi-locator.xarosa.online
*.wsi-webhook.xarosa.online
xarosa.online
*.xarosa.online
*.xcore.xarosa.online
*.zone.xarosa.online
Other domains in certificate