Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=financialadvisordetroit.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 25, 2026
Valid Until
July 24, 2026
42 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C6:E2:16:17:12:C2:7D:F0:23:CC:FD:3B:BB:BF:BF:88:A1:CE:D1:39:EB:ED:9B:A1:55:8C:4E:67:99:68:A9:CF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
sonofamachine.com
*.sonofamachine.com
*.random.sonofamachine.com
*.113.26s.net
*.126.26s.net
*.18.26s.net
*.197.26s.net
*.203.26s.net
26s.net
*.26s.net
*.98.26s.net
*.mail.26s.net
*.tnfq.26s.net
*.vr374.26s.net
*.webdisk.26s.net
barvip.com.au
*.barvip.com.au
cognac.com.au
*.cognac.com.au
d6h8.cn
*.d6h8.cn
*.m.d6h8.cn
dailkos.com
*.dailkos.com
delalba.com
*.delalba.com
*.com.european-studies.org
european-studies.org
*.european-studies.org
*.beta.financialadvisordetroit.com
*.blog.financialadvisordetroit.com
financialadvisordetroit.com
*.financialadvisordetroit.com
*.iki.financialadvisordetroit.com
*.m.financialadvisordetroit.com
*.old.financialadvisordetroit.com
*.remote.financialadvisordetroit.com
*.store.financialadvisordetroit.com
*.temp.financialadvisordetroit.com
*.test.financialadvisordetroit.com
*.wiki.financialadvisordetroit.com
gotranscription.com
*.gotranscription.com
*.listas.gotranscription.com
jetbluemasercard.com
*.jetbluemasercard.com
*.ww25.jetbluemasercard.com
lablaguedumatin.net
*.lablaguedumatin.net
ledeger.com
*.ledeger.com
*.ww38.ledeger.com
mauricrs.com
*.mauricrs.com
*.app.mirvix.live
*.m.mirvix.live
mirvix.live
*.mirvix.live
*.test.mirvix.live
*.www.mirvix.live
multiclinica.com
*.multiclinica.com
*.autodiscover.palmtown.com
*.liguiping.palmtown.com
palmtown.com
*.palmtown.com
*.random.palmtown.com
richgreed.com
*.richgreed.com
socialmediahooks.com
*.socialmediahooks.com
*.ww38.socialmediahooks.com
switchmate.com.au
*.switchmate.com.au
*.ww38.switchmate.com.au
textsize.com
*.textsize.com
*.api.themachine.it
*.backend.themachine.it
themachine.it
*.themachine.it
vintagecheese.com.au
*.vintagecheese.com.au
xn--leuchtarmbnder-fib.de
*.xn--leuchtarmbnder-fib.de
*.12041e31-1712-45ce-807f-48bfbfacad42.ykload.art
*.app.ykload.art
*.portal.ykload.art
ykload.art
*.ykload.art
Other domains in certificate