Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=toonkor485.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 26, 2026
Valid Until
August 24, 2026
89 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E8:65:D0:5A:F6:CA:C9:AF:E2:A9:A3:B3:ED:BB:AF:52:6C:38:D3:5B:7B:6F:18:2C:F6:C0:70:DD:F9:E6:27:34
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
aameritas.com
*.aameritas.com
*.explore.aameritas.com
*.random.aameritas.com
*.test.aameritas.com
*.ww25.aameritas.com
0007bet2.com
*.0007bet2.com
228t.com
*.228t.com
42tasks.com
*.42tasks.com
assignbyweb.com
*.assignbyweb.com
bateriasparkside.com
*.bateriasparkside.com
*.lzcrkm.bateriasparkside.com
beachbrowser.com
*.beachbrowser.com
colinbus.com
*.colinbus.com
commercialpeople.co.uk
*.commercialpeople.co.uk
*.mail.commercialpeople.co.uk
como.chat
*.como.chat
enkakiki.com
*.enkakiki.com
*.en.gauchada.com
gauchada.com
*.gauchada.com
joliescartes.com
*.joliescartes.com
legallend.com.au
*.legallend.com.au
*.random.legallend.com.au
*.ww25.legallend.com.au
leilomaster.com
*.leilomaster.com
*.ww1.leilomaster.com
*.ww16.leilomaster.com
*.ww38.leilomaster.com
ltool.pro
*.ltool.pro
*.e.lzgs.com
lzgs.com
*.lzgs.com
*.mail.lzgs.com
monthofmastery.com
*.monthofmastery.com
netmastersllc.com
*.netmastersllc.com
*.5a82b364-be7b-4f93-9e62-6fdc7b59bf16.neverfitness.com
*.mail.neverfitness.com
neverfitness.com
*.neverfitness.com
*.remote.neverfitness.com
*.rustore.neverfitness.com
palmbeachcountypropertyappraiser.com
*.palmbeachcountypropertyappraiser.com
*.random.palmbeachcountypropertyappraiser.com
panier-pour-chien.com
*.panier-pour-chien.com
pickwickgardensconferencecenter.com
*.pickwickgardensconferencecenter.com
*.www.pickwickgardensconferencecenter.com
royaldoultonguide.com
*.royaldoultonguide.com
*.ww38.royaldoultonguide.com
*.mail.scjn.com
*.sciusij.scjn.com
scjn.com
*.scjn.com
studelite.com
*.studelite.com
*.ww1.studelite.com
*.ww38.studelite.com
tabajara.com
*.tabajara.com
*.board.thegraduatesmovie.com
thegraduatesmovie.com
*.thegraduatesmovie.com
*.ww25.thegraduatesmovie.com
*.ww38.thegraduatesmovie.com
toonkor485.com
*.toonkor485.com
*.news.watercloudsolutions.com
watercloudsolutions.com
*.watercloudsolutions.com
Other domains in certificate