Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=duck-test.online
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 07, 2026
Valid Until
May 08, 2026
70 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0B:51:76:E5:00:21:36:D3:08:DF:2F:65:58:85:C1:EE:2F:DD:3E:CC:FF:6A:A1:00:D1:1E:1C:B7:96:50:48:1D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
quitan.com
*.quitan.com
*.ww1.quitan.com
*.ww17.quitan.com
9ly.cc
*.9ly.cc
*.w.9ly.cc
*.x.9ly.cc
beytullahsnk.me
*.beytullahsnk.me
*.www.beytullahsnk.me
*.art.duck-test.online
*.box.duck-test.online
*.comune.duck-test.online
duck-test.online
*.duck-test.online
*.mail10.duck-test.online
*.mail2.duck-test.online
*.mailapp.duck-test.online
*.mailgate.duck-test.online
*.mailgw.duck-test.online
*.mails.duck-test.online
*.mailsrv.duck-test.online
*.mbox.duck-test.online
*.mx.duck-test.online
*.mx0.duck-test.online
*.mx01.duck-test.online
*.mx02.duck-test.online
*.newmail.duck-test.online
*.ns.duck-test.online
*.outmail.duck-test.online
*.owa.duck-test.online
*.po.duck-test.online
*.poczta.duck-test.online
*.pop3.duck-test.online
*.posta.duck-test.online
*.remote.duck-test.online
*.seed.duck-test.online
*.send.duck-test.online
*.smtp1.duck-test.online
*.smtp3.duck-test.online
*.smtpauth.duck-test.online
*.spam.duck-test.online
*.tiger.duck-test.online
*.vmail.duck-test.online
*.ww38.duck-test.online
*.zimbra.duck-test.online
*.dashboard.dznrtn.pro
dznrtn.pro
*.dznrtn.pro
*.jenkins.dznrtn.pro
*.shop.dznrtn.pro
*.staging.dznrtn.pro
*.stg.dznrtn.pro
*.web.dznrtn.pro
*.webdisk.dznrtn.pro
*.www.dznrtn.pro
*.demo.ecenacademy.com
*.dp.ecenacademy.com
ecenacademy.com
*.ecenacademy.com
*.gitlab.ecenacademy.com
*.shop.ecenacademy.com
*.sitemap.ecenacademy.com
*.staging.ecenacademy.com
*.www.ecenacademy.com
*.bvianmghcnm.ejmerch.com
*.dashboard.ejmerch.com
*.dev.ejmerch.com
ejmerch.com
*.ejmerch.com
*.forum.ejmerch.com
*.m.ejmerch.com
*.my.ejmerch.com
*.portal.ejmerch.com
*.share.ejmerch.com
*.shop.ejmerch.com
*.store.ejmerch.com
*.vpn.ejmerch.com
*.www.ejmerch.com
embedsito.net
*.embedsito.net
*.i.embedsito.net
*.test.embedsito.net
natureceline.fr
*.natureceline.fr
thestreameastfun.com
*.thestreameastfun.com
vozewo.com
*.vozewo.com
Other domains in certificate