Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=flyneombay.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 18, 2026
Valid Until
May 19, 2026
89 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8C:04:C0:DC:32:B6:04:BF:93:EF:D7:AF:5E:34:CF:E6:BE:9E:74:58:FF:53:C7:8A:12:EF:70:08:D4:73:67:41
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
pixelgun.io
*.pixelgun.io
*.superset4.pixelgun.io
*.svc.pixelgun.io
*.ww17.pixelgun.io
*.ww25.pixelgun.io
aetnacvshealthplans.com
*.aetnacvshealthplans.com
*.app.aetnacvshealthplans.com
*.cloud.aetnacvshealthplans.com
*.demo.aetnacvshealthplans.com
*.hotfix-bi.aetnacvshealthplans.com
*.m.aetnacvshealthplans.com
*.magento.aetnacvshealthplans.com
*.member.aetnacvshealthplans.com
*.old.aetnacvshealthplans.com
*.outmail.aetnacvshealthplans.com
*.rd.aetnacvshealthplans.com
*.remote.aetnacvshealthplans.com
*.soap.aetnacvshealthplans.com
*.staging.aetnacvshealthplans.com
*.store.aetnacvshealthplans.com
*.users.aetnacvshealthplans.com
*.vpn.aetnacvshealthplans.com
*.wildcard.aetnacvshealthplans.com
bigfangroup.vip
*.bigfangroup.vip
*.xeddd3.bigfangroup.vip
*.16.carroagua.online
*.25.carroagua.online
*.38.carroagua.online
*.ap.carroagua.online
carroagua.online
*.carroagua.online
*.comune.carroagua.online
*.cpanel.carroagua.online
*.dev.carroagua.online
*.eb.carroagua.online
*.gw.carroagua.online
*.home.carroagua.online
*.mobile.carroagua.online
*.news.carroagua.online
*.sniper.carroagua.online
*.staging.carroagua.online
*.vip.carroagua.online
*.wap.carroagua.online
*.web.carroagua.online
*.ww16.carroagua.online
*.ww25.carroagua.online
*.ww38.carroagua.online
*.www.carroagua.online
*.zimbra.carroagua.online
*.admin.comfortandcompassion.com
*.api.comfortandcompassion.com
*.app.comfortandcompassion.com
comfortandcompassion.com
*.comfortandcompassion.com
*.hostmaster.comfortandcompassion.com
*.owa.comfortandcompassion.com
*.rds.comfortandcompassion.com
*.rds1.comfortandcompassion.com
*.rdweb.comfortandcompassion.com
*.remote.comfortandcompassion.com
*.shop.comfortandcompassion.com
*.store.comfortandcompassion.com
*.vpn.comfortandcompassion.com
*.webmail.comfortandcompassion.com
flyneombay.com
*.flyneombay.com
*.wildcard.flyneombay.com
*.br.go-l.com
*.business.go-l.com
*.en.go-l.com
go-l.com
*.go-l.com
*.th.go-l.com
*.ww.go-l.com
*.ww25.go-l.com
ideeverditop.com
*.ideeverditop.com
*.smtp.ideeverditop.com
mavcys.com
*.mavcys.com
partycelebration.com
*.partycelebration.com
*.analytics.roccasanfelice.com
*.api.roccasanfelice.com
*.fisher.roccasanfelice.com
roccasanfelice.com
*.roccasanfelice.com
Other domains in certificate