Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=nciua.org
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 03, 2026
Valid Until
May 04, 2026
80 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D5:58:3C:E5:08:AB:77:34:B3:EA:7E:D7:A7:3B:D3:1D:67:DA:E2:E6:99:19:4C:26:C7:D3:0B:75:B3:B0:FD:60
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
omene.com
*.omene.com
27530.co
*.27530.co
2bar.com
*.2bar.com
*.wiki.2bar.com
*.2078297547.ab4d.net
*.2078297574.ab4d.net
*.2078297780.ab4d.net
*.2078297888.ab4d.net
ab4d.net
*.ab4d.net
*.tremar.ab4d.net
actualzaim.online
*.actualzaim.online
*.ww38.actualzaim.online
*.admin.agit547.xyz
agit547.xyz
*.agit547.xyz
*.app.agit547.xyz
*.assets.agit547.xyz
*.auth.agit547.xyz
*.demo.agit547.xyz
*.flw.agit547.xyz
*.m.agit547.xyz
*.staging.agit547.xyz
*.test.agit547.xyz
*.test3.agit547.xyz
*.wildcard.agit547.xyz
*.ww12.agit547.xyz
*.ww25.agit547.xyz
allanime.store
*.allanime.store
*.backend.allanime.store
*.ftp.allanime.store
*.hostmaster.allanime.store
betd99.com
*.betd99.com
*.random.betd99.com
celeb.baby
*.celeb.baby
*.dan.celeb.baby
*.adguard1.crispravira.com
crispravira.com
*.crispravira.com
*.portal.crispravira.com
harvardgrads.com
*.harvardgrads.com
idiolect.com
*.idiolect.com
insstamed.com
*.insstamed.com
*.cdn.japanesesex.club
*.cpanel.japanesesex.club
japanesesex.club
*.japanesesex.club
kahramana.com
*.kahramana.com
kamagrajelly.com
*.kamagrajelly.com
kolikko.com
*.kolikko.com
kronberger.com
*.kronberger.com
leugers.com
*.leugers.com
lingor.com
*.lingor.com
loszetas.com
*.loszetas.com
maestrosschoolofmusicmt.com
*.maestrosschoolofmusicmt.com
*.ww25.maestrosschoolofmusicmt.com
makinano.com
*.makinano.com
*.hostmaster.nciua.org
*.nciua.nciua.org
nciua.org
*.nciua.org
*.ncjua.nciua.org
*.ncjus.nciua.org
*.njcjua.nciua.org
*.www.nciua.org
salinan.com
*.salinan.com
*.ww16.salinan.com
soalmost.us
*.soalmost.us
Other domains in certificate