Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=franzcarrers.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 01, 2026
Valid Until
June 30, 2026
49 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
6A:35:38:E4:E8:B4:32:59:01:A2:62:0F:8C:8E:FA:8C:AF:A0:5C:88:A3:3F:51:F1:80:B6:D2:CC:CD:F8:80:A2
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
marcheno.com
*.marcheno.com
*.mail.marcheno.com
*.remote.marcheno.com
buhal.xyz
*.buhal.xyz
*.of8jxs.buhal.xyz
*.ww25.buhal.xyz
*.www.buhal.xyz
*.blog.dumbia7.com
dumbia7.com
*.dumbia7.com
*.tistory.dumbia7.com
*.ww38.dumbia7.com
*.81ec603e-1044-412d-affa-841af34a6ae5.franzcarrers.com
*.app.franzcarrers.com
*.backoffice.franzcarrers.com
*.client.franzcarrers.com
*.dashboard.franzcarrers.com
*.dev.franzcarrers.com
*.feehgstg.franzcarrers.com
franzcarrers.com
*.franzcarrers.com
*.m.franzcarrers.com
*.marketing.franzcarrers.com
*.notexistssms.franzcarrers.com
*.preprod.franzcarrers.com
*.reporting.franzcarrers.com
*.sms.franzcarrers.com
*.so.franzcarrers.com
*.staging-steppyweb.franzcarrers.com
*.stats.franzcarrers.com
*.stg.franzcarrers.com
*.studio.franzcarrers.com
*.superset.franzcarrers.com
*.system.franzcarrers.com
*.test.franzcarrers.com
*.visual.franzcarrers.com
*.viz.franzcarrers.com
*.vpn.franzcarrers.com
*.web.franzcarrers.com
*.www.franzcarrers.com
*.admin.myfitnessprofile.com
*.administration.myfitnessprofile.com
*.api.myfitnessprofile.com
*.app.myfitnessprofile.com
*.blog.myfitnessprofile.com
*.cloud.myfitnessprofile.com
*.dev.myfitnessprofile.com
*.home.myfitnessprofile.com
*.hostmaster.myfitnessprofile.com
*.kubeflow-pipeline.myfitnessprofile.com
*.m.myfitnessprofile.com
*.mobile.myfitnessprofile.com
*.mta-sts.myfitnessprofile.com
myfitnessprofile.com
*.myfitnessprofile.com
*.news.myfitnessprofile.com
*.partner.myfitnessprofile.com
*.pipelines.myfitnessprofile.com
*.prod.myfitnessprofile.com
*.rd.myfitnessprofile.com
*.rds.myfitnessprofile.com
*.rdweb.myfitnessprofile.com
*.remote.myfitnessprofile.com
*.staging.myfitnessprofile.com
*.support.myfitnessprofile.com
*.test.myfitnessprofile.com
*.tickets.myfitnessprofile.com
*.user.myfitnessprofile.com
*.viz.myfitnessprofile.com
*.wap.myfitnessprofile.com
*.web.myfitnessprofile.com
*.www.myfitnessprofile.com
onload.pw
*.onload.pw
*.website.onload.pw
*.shop.vinouno.eu
vinouno.eu
*.vinouno.eu
*.book.wwwgoodville.com
*.business.wwwgoodville.com
*.cn.wwwgoodville.com
*.hr.wwwgoodville.com
*.staff.wwwgoodville.com
*.ww25.wwwgoodville.com
*.ww38.wwwgoodville.com
wwwgoodville.com
*.wwwgoodville.com
Other domains in certificate