Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=barumulai3.click
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 01, 2026
Valid Until
May 02, 2026
68 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F4:0B:77:D4:1B:70:81:55:B6:CD:6F:18:46:A1:82:E0:2E:3C:7A:B0:E3:01:B4:E8:27:AA:AB:92:3D:3E:73:29
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
joubin.com
*.joubin.com
*.dd2yem4b0x.joubin.com
*.mailer.joubin.com
*.sitemaps.joubin.com
alto.bio
*.alto.bio
*.api.alto.bio
*.owncloud.alto.bio
*.parcelas.alto.bio
*.random.alto.bio
*.ww12.alto.bio
aswaqkw.store
*.aswaqkw.store
*.m.aswaqkw.store
*.wp.aswaqkw.store
barumulai3.click
*.barumulai3.click
*.www.barumulai3.click
campingrianopicosdeeuropa.com
*.campingrianopicosdeeuropa.com
*.wildcard.campingrianopicosdeeuropa.com
donga.net
*.donga.net
*.mobile.donga.net
*.my.donga.net
fmovieszto.cc
*.fmovieszto.cc
*.sitemap.fmovieszto.cc
*.sitemaps.fmovieszto.cc
*.wildcard.fmovieszto.cc
*.ww25.fmovieszto.cc
*.beta.fxbtrading.com
fxbtrading.com
*.fxbtrading.com
*.autodiscover.giredo.com
*.balibagusart.giredo.com
*.blendarticle.giredo.com
*.cpcalendars.giredo.com
*.dejourney.giredo.com
*.ezgameonline.giredo.com
*.gameofthrones5.giredo.com
giredo.com
*.giredo.com
*.morningtalk.giredo.com
*.nycparttimejobs.giredo.com
*.pchardware.giredo.com
*.vpn.giredo.com
*.watch-full-episode.giredo.com
*.ws.giredo.com
hardrockmx.com
*.hardrockmx.com
*.members.hardrockmx.com
*.test.hardrockmx.com
*.backup.nanomite.com
nanomite.com
*.nanomite.com
*.remoteaccess.nanomite.com
*.ssl.nanomite.com
ninmlsmiiq.com
*.ninmlsmiiq.com
*.smtp.ninmlsmiiq.com
*.whm.ninmlsmiiq.com
*.cloud.pietroburgo.com
pietroburgo.com
*.pietroburgo.com
polastbox.pl
*.polastbox.pl
*.ww38.polastbox.pl
*.ai.ranhe.shop
*.cimo.ranhe.shop
*.mj.ranhe.shop
ranhe.shop
*.ranhe.shop
receiptpayment.academy
*.receiptpayment.academy
*.secure.receiptpayment.academy
*.remote.skurfboard.com
skurfboard.com
*.skurfboard.com
*.vpn2.skurfboard.com
vsporty.com
*.vsporty.com
*.xdownloadx.vsporty.com
*.autodiscover.waynesneonclocks.com
waynesneonclocks.com
*.waynesneonclocks.com
*.webdisk.waynesneonclocks.com
*.ww25.waynesneonclocks.com
Other domains in certificate