Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=regalcrafted.studio
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 21, 2026
Valid Until
August 19, 2026
67 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
88:67:15:D1:67:26:73:52:1C:66:06:D3:02:AE:AB:96:5C:7C:38:A6:99:43:4D:D0:A3:2F:B8:25:D9:92:6C:76
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
regalcrafted.studio
*.regalcrafted.studio
*.ttzbnd.regalcrafted.studio
0kpay.tech
*.0kpay.tech
*.admin.0kpay.tech
*.aging.0kpay.tech
*.api.0kpay.tech
*.dev.0kpay.tech
*.m.0kpay.tech
*.mail.0kpay.tech
*.staging.0kpay.tech
*.test.0kpay.tech
*.admin.ainessecuris.com
ainessecuris.com
*.ainessecuris.com
*.dev.ainessecuris.com
*.m.ainessecuris.com
*.staging.ainessecuris.com
*.test.ainessecuris.com
*.y75t4b.ainessecuris.com
*.accounts.astclaim.com
astclaim.com
*.astclaim.com
*.development.astclaim.com
*.ebay.astclaim.com
*.emv1.astclaim.com
*.help.astclaim.com
*.m.astclaim.com
*.magento.astclaim.com
*.new.astclaim.com
*.portal.astclaim.com
*.shop.astclaim.com
*.stage.astclaim.com
*.staging.astclaim.com
*.store.astclaim.com
*.system.astclaim.com
*.wildcard.astclaim.com
*.115146f8-e069-4a25-8994-f60892da0e7d.downtownlajolla.com
*.admin.downtownlajolla.com
*.app.downtownlajolla.com
*.backend.downtownlajolla.com
downtownlajolla.com
*.downtownlajolla.com
*.hostmaster.downtownlajolla.com
*.intranet.downtownlajolla.com
*.notexistsbackend.downtownlajolla.com
*.portal.downtownlajolla.com
*.ra.downtownlajolla.com
*.rds.downtownlajolla.com
*.remote.downtownlajolla.com
*.shop.downtownlajolla.com
*.staging.downtownlajolla.com
*.store.downtownlajolla.com
*.vpn.downtownlajolla.com
*.wcbwom.downtownlajolla.com
*.www.downtownlajolla.com
*.app.gelinliklermodelleri.com
*.backup.gelinliklermodelleri.com
gelinliklermodelleri.com
*.gelinliklermodelleri.com
*.orfxsstaging.gelinliklermodelleri.com
*.staging.gelinliklermodelleri.com
*.www.gelinliklermodelleri.com
*.xuglkapi.gelinliklermodelleri.com
hurricainedata.com
*.hurricainedata.com
*.staging.hurricainedata.com
*.www.hurricainedata.com
*.bwww.ivolatility.co
*.celsius.ivolatility.co
*.cpanel.ivolatility.co
*.emv1.ivolatility.co
*.ftp.ivolatility.co
ivolatility.co
*.ivolatility.co
*.jitsi.ivolatility.co
*.m.ivolatility.co
*.newslist.ivolatility.co
*.nuqrjrocketchat.ivolatility.co
*.rocketchat.ivolatility.co
*.sitemap.ivolatility.co
*.sitemaps.ivolatility.co
*.whm.ivolatility.co
*.www.ivolatility.co
*.hbpfjztm.travelvista-map.info
*.lgnuejcf.travelvista-map.info
*.r757r0.travelvista-map.info
travelvista-map.info
*.travelvista-map.info
Other domains in certificate