Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=geography1.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 02, 2026
Valid Until
July 31, 2026
67 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
20:58:B3:CD:B1:C8:4B:5C:2E:63:3F:AC:41:44:4E:3E:05:2E:04:3A:A9:64:DD:44:B7:38:51:09:3E:1E:9B:67
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
preventproject.org
*.preventproject.org
*.www.preventproject.org
acsolu.com
*.acsolu.com
*.apps.acsolu.com
*.webconnect.acsolu.com
*.webvpn.acsolu.com
aichatgpt.io
*.aichatgpt.io
*.random.aichatgpt.io
*.ww25.aichatgpt.io
*.ww38.aichatgpt.io
aqrng.com
*.aqrng.com
*.oar45v.aqrng.com
belle-rennaise.com
*.belle-rennaise.com
*.magento.belle-rennaise.com
*.relay.belle-rennaise.com
*.www.belle-rennaise.com
evoke.it
*.evoke.it
*.hostmaster.evoke.it
*.admin.furniture-egoparis.com
*.api.furniture-egoparis.com
*.app.furniture-egoparis.com
*.backend.furniture-egoparis.com
*.blue.furniture-egoparis.com
*.cpanel.furniture-egoparis.com
*.demo.furniture-egoparis.com
*.dev.furniture-egoparis.com
furniture-egoparis.com
*.furniture-egoparis.com
*.hostmaster.furniture-egoparis.com
*.localhost.furniture-egoparis.com
*.mail.furniture-egoparis.com
*.pop.furniture-egoparis.com
*.v1.furniture-egoparis.com
*.whm.furniture-egoparis.com
*.www.furniture-egoparis.com
*.files.geography1.com
*.free.geography1.com
geography1.com
*.geography1.com
*.images.geography1.com
*.market.geography1.com
*.mba.geography1.com
*.nhac.geography1.com
*.pool.geography1.com
*.rahala.geography1.com
*.staging.geography1.com
*.vb.geography1.com
*.ww38.geography1.com
mystrength.com.au
*.mystrength.com.au
paardyworld.io
*.paardyworld.io
*.admin.privacysupport.com
*.hostmaster.privacysupport.com
privacysupport.com
*.privacysupport.com
*.2023.quickshine.com
*.clientes.quickshine.com
*.erp.quickshine.com
quickshine.com
*.quickshine.com
*.ww38.quickshine.com
*.mail.raja89slot.xyz
raja89slot.xyz
*.raja89slot.xyz
*.ww38.raja89slot.xyz
*.autoconfig.ricardoalfonsinblog.com
*.autodiscover.ricardoalfonsinblog.com
*.ftp.ricardoalfonsinblog.com
ricardoalfonsinblog.com
*.ricardoalfonsinblog.com
*.mail.roblox-z.com
roblox-z.com
*.roblox-z.com
*.backend.xn--cezaavukatankara-jqc.com
*.ijfvrdek.xn--cezaavukatankara-jqc.com
*.pagamento.xn--cezaavukatankara-jqc.com
*.rd.xn--cezaavukatankara-jqc.com
*.secure.xn--cezaavukatankara-jqc.com
*.stg.xn--cezaavukatankara-jqc.com
*.v1.xn--cezaavukatankara-jqc.com
*.www.xn--cezaavukatankara-jqc.com
xn--cezaavukatankara-jqc.com
*.xn--cezaavukatankara-jqc.com
Other domains in certificate