Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=lostnirvana.info
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 12, 2026
Valid Until
August 10, 2026
80 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CC:57:49:F3:D1:61:48:65:31:D6:97:70:5E:A6:EF:07:D6:A6:49:A5:F6:7B:C6:34:09:30:48:DF:04:DC:A0:E8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
otaexpress.com
*.otaexpress.com
*.mail.otaexpress.com
*.webdisk.otaexpress.com
*.www.otaexpress.com
03m9yknp20shk.my
*.03m9yknp20shk.my
*.www.03m9yknp20shk.my
556.sh
*.556.sh
*.www.556.sh
a229lls.top
*.a229lls.top
*.ayfpk.a229lls.top
*.b54zj.a229lls.top
*.kwid9.a229lls.top
accessunsupervised.co
*.accessunsupervised.co
*.www.accessunsupervised.co
advancevoiceformgroup.info
*.advancevoiceformgroup.info
*.jtzvj4.advancevoiceformgroup.info
ankarasun.info
*.ankarasun.info
*.dev.ankarasun.info
*.sitemaps.ankarasun.info
*.www.ankarasun.info
anlamyeri.info
*.anlamyeri.info
*.www.anlamyeri.info
bp51.net
*.bp51.net
*.tr1.bp51.net
*.www.bp51.net
brainers.co
*.brainers.co
*.www.brainers.co
breeze-on-nova.team
*.breeze-on-nova.team
*.www.breeze-on-nova.team
breeze-spark.buzz
*.breeze-spark.buzz
*.www.breeze-spark.buzz
consulat.com
*.consulat.com
*.e.consulat.com
*.ie.consulat.com
*.nullmx.consulat.com
*.rdb.consulat.com
*.rdv.consulat.com
*.rev.consulat.com
*.rvd.consulat.com
*.tlscontact.consulat.com
*.ww25.consulat.com
empoweramplifyywave.info
*.empoweramplifyywave.info
*.q3lkp1.empoweramplifyywave.info
*.zftj98.empoweramplifyywave.info
gotec.net
*.gotec.net
*.hostmaster.gotec.net
*.random.gotec.net
*.ww25.gotec.net
*.bmail.lostnirvana.info
lostnirvana.info
*.lostnirvana.info
lumaspark.biz
*.lumaspark.biz
*.qtrkmd.lumaspark.biz
*.0k4qx.meimeids.xyz
*.db50f.meimeids.xyz
*.kmdp61.meimeids.xyz
*.ldv.meimeids.xyz
meimeids.xyz
*.meimeids.xyz
*.obvo6m.meimeids.xyz
*.p7jho1.meimeids.xyz
*.slesl6.meimeids.xyz
*.xb0qiwp.meimeids.xyz
*.n9emwt.orbit-leaf.world
orbit-leaf.world
*.orbit-leaf.world
ruisitiyu.cn
*.ruisitiyu.cn
*.wcjag06h.ruisitiyu.cn
visitesvirtuelles2020.org
*.visitesvirtuelles2020.org
*.ww25.visitesvirtuelles2020.org
*.www.visitesvirtuelles2020.org
Other domains in certificate