Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=freamingrafttwoway.sbs
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 19, 2026
Valid Until
July 18, 2026
64 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
6D:E7:49:75:04:3F:20:E4:D8:3E:BA:61:46:74:D5:8F:4E:7E:0F:B2:F0:A9:D3:2F:85:24:FF:33:3B:F4:36:37
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
ourdemise.org
*.ourdemise.org
*.oofwbwwww.ourdemise.org
1068dmy301.top
*.1068dmy301.top
*.248d03e4bf69615bd358a7f007224c4e.1068dmy301.top
*.345051b0-c927-4c12-9eb9-17365efe165c.78winc1.ltd
*.47aea666-5f71-4349-b6e1-3047918f4019.78winc1.ltd
78winc1.ltd
*.78winc1.ltd
*.account.78winc1.ltd
*.adm.78winc1.ltd
*.api.78winc1.ltd
*.app.78winc1.ltd
*.dev.78winc1.ltd
*.hr.78winc1.ltd
*.intranet.78winc1.ltd
*.members.78winc1.ltd
*.my.78winc1.ltd
*.new.78winc1.ltd
*.portal.78winc1.ltd
*.public.78winc1.ltd
*.share.78winc1.ltd
*.sharepoint.78winc1.ltd
*.test.78winc1.ltd
*.uat.78winc1.ltd
deaiinvest.com
*.deaiinvest.com
*.rd.deaiinvest.com
*.25tsmsote6golcybzszircuxmxm.freamingrafttwoway.sbs
*.ba5wiq6ypf1v2e6.freamingrafttwoway.sbs
*.bqrlrixevdhprs.freamingrafttwoway.sbs
*.d5unncnnwobv4caoy8.freamingrafttwoway.sbs
*.ereh5cufm7ieip327vhiaijwdv2w.freamingrafttwoway.sbs
freamingrafttwoway.sbs
*.freamingrafttwoway.sbs
*.liyqjvp7qb2zvrzaohrs.freamingrafttwoway.sbs
*.mui8r1xxvlkxuqw.freamingrafttwoway.sbs
*.pecgcevr3p.freamingrafttwoway.sbs
*.wwke31ipterdttuc7z.freamingrafttwoway.sbs
*.zq4xjfjtiplv.freamingrafttwoway.sbs
giantpawprints.org
*.giantpawprints.org
*.webmail.giantpawprints.org
goodmorningsophia.com
*.goodmorningsophia.com
grouphealthprioritycare.com
*.grouphealthprioritycare.com
hackathon.taxi
*.hackathon.taxi
hydmm.com
*.hydmm.com
ideadmncreativeworks.com
*.ideadmncreativeworks.com
indobetputru.cfd
*.indobetputru.cfd
interapark.com
*.interapark.com
*.26afe74-28cb-4f69-be5c-4a9e8745194b.kapten33a.site
*.admin.kapten33a.site
*.aging.kapten33a.site
*.app.kapten33a.site
*.assets.kapten33a.site
*.demo.kapten33a.site
*.djajqdev.kapten33a.site
*.e26afe74-28cb-4f69-be5c-4a9e8745194b.kapten33a.site
*.fflsmdashboard.kapten33a.site
*.hostmaster.kapten33a.site
*.jjvwqmarketing.kapten33a.site
kapten33a.site
*.kapten33a.site
*.kpbjgweb.kapten33a.site
*.mailer.kapten33a.site
*.reporting.kapten33a.site
*.secure.kapten33a.site
*.staging.kapten33a.site
*.stg.kapten33a.site
*.syqubvwh.kapten33a.site
*.test.kapten33a.site
*.vdr6pg091h.kapten33a.site
*.hostmaster.laprova.it
laprova.it
*.laprova.it
*.admin.nexoria-events.com
nexoria-events.com
*.nexoria-events.com
winpkrapk.one
*.winpkrapk.one
xgd8ygu.cc
*.xgd8ygu.cc
Other domains in certificate