Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=apple-findmaps.live
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 12, 2026
Valid Until
August 10, 2026
60 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
53:0B:05:2B:F9:B9:45:8B:F2:14:60:95:44:D3:70:92:BB:8B:9C:BC:B0:2A:7E:17:BB:5F:0F:A4:3F:73:E8:DC
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
winwitheforte.work
*.winwitheforte.work
ancientelia.com
*.ancientelia.com
apple-findmaps.live
*.apple-findmaps.live
arribai.com
*.arribai.com
asapanalytics.com
*.asapanalytics.com
audiovisualcontent.click
*.audiovisualcontent.click
bad-credit-loan-2zd.click
*.bad-credit-loan-2zd.click
betting.expert
*.betting.expert
beyontecusa.com
*.beyontecusa.com
bo2fauseraccess.com
*.bo2fauseraccess.com
boxtap.in
*.boxtap.in
brainpolo.app
*.brainpolo.app
businessloans879.sbs
*.businessloans879.sbs
caihongnan.wtf
*.caihongnan.wtf
championschoolillinois.com
*.championschoolillinois.com
changhong-xa.cn
*.changhong-xa.cn
chardonnaysailingcharters.com
*.chardonnaysailingcharters.com
coinmaite.com
*.coinmaite.com
dogfriendlywinetours.com
*.dogfriendlywinetours.com
edibleemporium.food
*.edibleemporium.food
ethereumtraded.com
*.ethereumtraded.com
feqh.com
*.feqh.com
mapcon2025mahabaleshwarsatara.com
*.mapcon2025mahabaleshwarsatara.com
mcdowellspopup.com
*.mcdowellspopup.com
megamall.info
*.megamall.info
menopause3.com
*.menopause3.com
merchantskittanning.com
*.merchantskittanning.com
mindsiight.com
*.mindsiight.com
minhainscricaoenem.info
*.minhainscricaoenem.info
minicrossword.art
*.minicrossword.art
movieboxtv.lat
*.movieboxtv.lat
muntahagifts.xyz
*.muntahagifts.xyz
noblestia.com
*.noblestia.com
ovenaiq.com
*.ovenaiq.com
pelvicfloorstrongreview.com
*.pelvicfloorstrongreview.com
successhub.ca
*.successhub.ca
svze8gi.top
*.svze8gi.top
thethriftychickscalgary.com
*.thethriftychickscalgary.com
touristhotelsbungoma.com
*.touristhotelsbungoma.com
trade-byrax2.com
*.trade-byrax2.com
trade-taxev2.com
*.trade-taxev2.com
upkeepcmmsoutreach.co
*.upkeepcmmsoutreach.co
wopmo.cc
*.wopmo.cc
www222.top
*.www222.top
xbpomqmmcocvmbmxkbwv.com
*.xbpomqmmcocvmbmxkbwv.com
Other domains in certificate