Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=lawfish.vip
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 22, 2026
Valid Until
July 21, 2026
74 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F0:B3:22:86:A7:C8:FE:48:8A:B5:73:00:54:E7:44:F9:7D:0D:21:12:47:78:88:FE:AC:C8:0D:FA:CE:AC:B8:C7
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
gatefinds.com
*.gatefinds.com
70008d5.com
*.70008d5.com
asimobile.xyz
*.asimobile.xyz
baihuaxian.com
*.baihuaxian.com
bengalivideo.com
*.bengalivideo.com
bodrumvitrin.vip
*.bodrumvitrin.vip
cadiploma.com
*.cadiploma.com
chemango.com
*.chemango.com
cliphotvn.hair
*.cliphotvn.hair
durfee-regn.com
*.durfee-regn.com
eatteahousenoodles.com
*.eatteahousenoodles.com
fatbabecouncil.com
*.fatbabecouncil.com
flexmemes.com
*.flexmemes.com
gavis-restaurant.com
*.gavis-restaurant.com
gen7ug.com
*.gen7ug.com
go-bistro.com
*.go-bistro.com
gptnewsnet.com
*.gptnewsnet.com
gpttable.com
*.gpttable.com
htx001.com
*.htx001.com
imigskitchen.com
*.imigskitchen.com
isondalis.com
*.isondalis.com
jantino.co.uk
*.jantino.co.uk
jerseyfinds.com
*.jerseyfinds.com
jessfielderphotography.com
*.jessfielderphotography.com
joinwaldron.com
*.joinwaldron.com
korneliairis.cfd
*.korneliairis.cfd
krispyktemelistens.com
*.krispyktemelistens.com
kukulimarket.com
*.kukulimarket.com
lacostamusicstudio.com
*.lacostamusicstudio.com
*.app.lawfish.vip
lawfish.vip
*.lawfish.vip
littlelinesofgold.com
*.littlelinesofgold.com
melanie.cfd
*.melanie.cfd
mullensonmadison.com
*.mullensonmadison.com
myclassiclifefilm.com
*.myclassiclifefilm.com
nationalequalityrally.com
*.nationalequalityrally.com
nicholasphilly.com
*.nicholasphilly.com
pplelectrc.com
*.pplelectrc.com
usemedicalcouriers.com
*.usemedicalcouriers.com
vtamicropol.com
*.vtamicropol.com
weenie.lol
*.weenie.lol
wwcp818.xyz
*.wwcp818.xyz
xebslyti.xyz
*.xebslyti.xyz
xh486.vip
*.xh486.vip
xn--48jwgy01ikygo3n.com
*.xn--48jwgy01ikygo3n.com
Other domains in certificate