Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=ostonserver.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 30, 2026
Valid Until
July 29, 2026
76 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7E:07:44:F9:44:66:FF:48:9D:9C:FC:9D:EA:EE:D7:98:C6:DA:38:D3:A0:67:FC:CB:2F:FC:20:C9:F3:D5:AC:EF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
ostonserver.com
*.ostonserver.com
*.api.ostonserver.com
*.rvmapi.ostonserver.com
1on1.co.za
*.1on1.co.za
agentoagent.com
*.agentoagent.com
*.agtx1.agentoagent.com
*.dprox1.agentoagent.com
*.prox1.agentoagent.com
*.api8.apiregion721.xyz
apiregion721.xyz
*.apiregion721.xyz
*.chat.apiregion721.xyz
*.m10.apiregion721.xyz
*.m6.apiregion721.xyz
*.m8.apiregion721.xyz
*.m9.apiregion721.xyz
*.ppt.apiregion721.xyz
*.pptstatic.apiregion721.xyz
*.rankv21.apiregion721.xyz
*.static.apiregion721.xyz
*.upload.apiregion721.xyz
*.ww25.apiregion721.xyz
ceffo.it
*.ceffo.it
*.hostmaster.ceffo.it
*.api.ev77.ad
*.demo.ev77.ad
ev77.ad
*.ev77.ad
heartforartonline.com
*.heartforartonline.com
hoshinoshizukudo.me
*.hoshinoshizukudo.me
*.ww25.hoshinoshizukudo.me
*.ww3.hoshinoshizukudo.me
hotsuppliers.com
*.hotsuppliers.com
mintagelab.com
*.mintagelab.com
*.www.mintagelab.com
*.api.mykitchen.it
*.hostmaster.mykitchen.it
mykitchen.it
*.mykitchen.it
*.pop3.mykitchen.it
*.rds.mykitchen.it
*.remote.mykitchen.it
*.staging.mykitchen.it
*.central.plasticminiature.com
*.dashboard.plasticminiature.com
plasticminiature.com
*.plasticminiature.com
*.preview.plasticminiature.com
*.rds.plasticminiature.com
*.rdweb.plasticminiature.com
*.stg.plasticminiature.com
*.vdi.plasticminiature.com
referralbonuses.net
*.referralbonuses.net
*.ww25.referralbonuses.net
*.www.referralbonuses.net
*.research.riceve.it
riceve.it
*.riceve.it
*.staging.riceve.it
*.mx.roots.bio
roots.bio
*.roots.bio
russia-escorts.info
*.russia-escorts.info
struktur.studio
*.struktur.studio
*.admin.sunshinecorps.biz
*.dev.sunshinecorps.biz
sunshinecorps.biz
*.sunshinecorps.biz
*.hostmaster.tradenames.uk
tradenames.uk
*.tradenames.uk
western7nion.com
*.western7nion.com
*.ww25.western7nion.com
*.03590405-64b3-4154-ae46-a566ce2eabf8.worldsoccer.family
*.client.worldsoccer.family
*.dev.worldsoccer.family
worldsoccer.family
*.worldsoccer.family
Other domains in certificate