Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=lectormanga.fun
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
January 17, 2026
Valid Until
April 17, 2026
51 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8D:F6:A8:05:9B:7E:9F:E0:6C:C4:A9:BD:65:A4:9B:41:AC:2C:B8:F8:57:5B:69:DB:6B:2C:9C:55:E3:3E:3B:40
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
79 domains
pasasion.com
*.pasasion.com
avss2018.org
*.avss2018.org
betsport7.bet
*.betsport7.bet
*.ww38.betsport7.bet
cathedralgardenscardiff.co.uk
*.cathedralgardenscardiff.co.uk
*.ww38.cathedralgardenscardiff.co.uk
cinematography-online-degree8.cfd
*.cinematography-online-degree8.cfd
*.www.cinematography-online-degree8.cfd
cumulusnottingham2016.org
*.cumulusnottingham2016.org
*.back.dapkz.com
dapkz.com
*.dapkz.com
dmujmihmwr.net
*.dmujmihmwr.net
e499flzwm2.net
*.e499flzwm2.net
etiquettemagique.com
*.etiquettemagique.com
fkahtmo4ge.net
*.fkahtmo4ge.net
hcqogitgar.net
*.hcqogitgar.net
iynfdteqvu.net
*.iynfdteqvu.net
journeyofalek.com
*.journeyofalek.com
lectormanga.fun
*.lectormanga.fun
*.remote.lectormanga.fun
letuscreatecambodia.org
*.letuscreatecambodia.org
*.ww16.letuscreatecambodia.org
*.ww38.letuscreatecambodia.org
littlebigquestion.com
*.littlebigquestion.com
macarons.bio
*.macarons.bio
mychemist.store
*.mychemist.store
*.ww16.mychemist.store
nf7h7cpld2.net
*.nf7h7cpld2.net
oaklandartgallery.org
*.oaklandartgallery.org
poildsnldr.net
*.poildsnldr.net
qmaaptxf.com
*.qmaaptxf.com
rsrstylezone.xyz
*.rsrstylezone.xyz
seungmani.com
*.seungmani.com
skincareonline.com.au
*.skincareonline.com.au
tadivui.com
*.tadivui.com
therebels.tv
*.therebels.tv
*.vpn.therebels.tv
*.ww25.therebels.tv
*.ww38.therebels.tv
*.www.therebels.tv
ultimaresystem.us
*.ultimaresystem.us
uusdeal.click
*.uusdeal.click
whoreship.com
*.whoreship.com
wszqs739xo.net
*.wszqs739xo.net
*.wap.xso66.top
xso66.top
*.xso66.top
Other domains in certificate