Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=exnessfxpro.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 28, 2026
Valid Until
August 26, 2026
80 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
41:82:80:BB:12:48:26:5F:43:22:E0:1D:22:11:95:A2:32:F0:3F:88:59:94:C4:67:09:0B:62:7A:EB:B3:05:C1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
88 domains
benepignorato.com
*.benepignorato.com
*.admin.benepignorato.com
*.app.benepignorato.com
*.dev.benepignorato.com
*.ebay.benepignorato.com
*.remote.benepignorato.com
a278jys.top
*.a278jys.top
*.abc.a278jys.top
*.access.bustun.com
bustun.com
*.bustun.com
*.rds.bustun.com
*.remote.bustun.com
*.a5import-lecture-com.exnessfxpro.com
*.adobe.exnessfxpro.com
*.app.exnessfxpro.com
*.aws.exnessfxpro.com
*.corp.exnessfxpro.com
exnessfxpro.com
*.exnessfxpro.com
*.ncnd.exnessfxpro.com
*.pod52.exnessfxpro.com
*.ww38.exnessfxpro.com
findingmarketgrowthacquisitions.co
*.findingmarketgrowthacquisitions.co
*.autodiscover.gopconvention2012.com
*.connect.gopconvention2012.com
*.cpanel.gopconvention2012.com
*.cpcalendars.gopconvention2012.com
*.cpcontacts.gopconvention2012.com
*.delegates.gopconvention2012.com
gopconvention2012.com
*.gopconvention2012.com
*.hostmaster.gopconvention2012.com
*.mail.gopconvention2012.com
*.owa.gopconvention2012.com
*.prt.gopconvention2012.com
*.webdisk.gopconvention2012.com
*.webmail.gopconvention2012.com
*.webvpn.gopconvention2012.com
*.www.gopconvention2012.com
luxurypickleballresorts.com
*.luxurypickleballresorts.com
*.rd.luxurypickleballresorts.com
*.mail.mhdoctor.com
mhdoctor.com
*.mhdoctor.com
*.www.mhdoctor.com
*.admin.myhomework.it
*.analytics.myhomework.it
*.backend.myhomework.it
*.bi.myhomework.it
*.demo.myhomework.it
*.dev.myhomework.it
*.intelligence.myhomework.it
*.metric.myhomework.it
myhomework.it
*.myhomework.it
*.remote.myhomework.it
*.staging.myhomework.it
nilaauk.org
*.nilaauk.org
*.sandbox.nilaauk.org
*.admin.prepaidmobilerecharge.in
*.blog.prepaidmobilerecharge.in
prepaidmobilerecharge.in
*.prepaidmobilerecharge.in
*.www.prepaidmobilerecharge.in
*.analytic-preprod.sandwich.best
*.hostmaster.sandwich.best
*.mobile.sandwich.best
sandwich.best
*.sandwich.best
*.sitemaps.sandwich.best
*.toreandcolonialhams.sandwich.best
*.www.sandwich.best
*.intranet.tiwitch.com
*.shop.tiwitch.com
*.sitemaps.tiwitch.com
*.test.tiwitch.com
tiwitch.com
*.tiwitch.com
*.rd.xn--vl2bp2er2mq9m.com
*.wiki.xn--vl2bp2er2mq9m.com
xn--vl2bp2er2mq9m.com
*.xn--vl2bp2er2mq9m.com
Other domains in certificate