Open
Cached
·
just now
79/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=shanghaino1.cn
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 12, 2026
Valid Until
May 13, 2026
89 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5F:07:68:D6:CE:B0:B0:BB:CA:29:D8:48:FA:15:5F:CF:3D:58:89:6D:AC:42:FA:D9:A8:0C:D7:13:91:07:20:5A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
not911.com
*.not911.com
*.hostmaster.not911.com
*.m.not911.com
*.remote.not911.com
*.www.not911.com
byxatab.club
*.byxatab.club
*.staging.byxatab.club
*.hostmaster.idiazm.com
idiazm.com
*.idiazm.com
*.744bfefa-e633-4451-b1dc-8cedd2e376d8.ipaybi.com
*.78fc2d14-56ff-4063-a3b8-8a2fb19149c6.ipaybi.com
*.99716c7e-07bc-4062-92db-a6fc876b5779.ipaybi.com
*.admin.ipaybi.com
*.api.ipaybi.com
*.demo.ipaybi.com
*.dyontmembers.ipaybi.com
ipaybi.com
*.ipaybi.com
*.mail.ipaybi.com
*.members.ipaybi.com
*.rd.ipaybi.com
*.rds.ipaybi.com
*.rdweb.ipaybi.com
*.remote.ipaybi.com
*.smtp.ipaybi.com
*.staging.ipaybi.com
*.test.ipaybi.com
*.transparencia.ipaybi.com
*.v2.ipaybi.com
*.web.ipaybi.com
*.webdisk.ipaybi.com
*.www.ipaybi.com
*.admin.irvingacrepair.com
*.c29893d8-3834-4d63-8dd3-83aa541006d8.irvingacrepair.com
*.console.irvingacrepair.com
*.demo.irvingacrepair.com
*.ezicwamu.irvingacrepair.com
irvingacrepair.com
*.irvingacrepair.com
*.mail.irvingacrepair.com
*.new.irvingacrepair.com
*.portal.irvingacrepair.com
*.rd.irvingacrepair.com
*.rds.irvingacrepair.com
*.rdweb.irvingacrepair.com
*.store.irvingacrepair.com
secretfile.it
*.secretfile.it
*.backend.sexrobotsai.com
sexrobotsai.com
*.sexrobotsai.com
shalomsky.com
*.shalomsky.com
shanghaino1.cn
*.shanghaino1.cn
shftinternational.com
*.shftinternational.com
simpsonjudgerecruitment.org
*.simpsonjudgerecruitment.org
sja3x.top
*.sja3x.top
skinbylinds.com
*.skinbylinds.com
skyedgeadvertising.com
*.skyedgeadvertising.com
slownie.it
*.slownie.it
sm1asia1.me
*.sm1asia1.me
smartinvestapproach.sbs
*.smartinvestapproach.sbs
socialanimals.it
*.socialanimals.it
socialminis.com
*.socialminis.com
spaceoflove.it
*.spaceoflove.it
splimx.com
*.splimx.com
sportsgames.us
*.sportsgames.us
sportzfytvapps.com
*.sportzfytvapps.com
spothotel.com
*.spothotel.com
squid88a.one
*.squid88a.one
Other domains in certificate