Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=avidor.site
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 09, 2026
Valid Until
August 07, 2026
59 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
62:B9:5A:E8:3E:88:A5:77:C3:AD:BE:E0:5F:EE:E1:4A:CD:A8:D8:06:8F:12:5B:8C:1F:1C:21:24:63:C9:AD:45
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
royy.site
*.royy.site
*.iegdea.royy.site
*.wew.royy.site
alltrashrubbishremovalsydney.com.au
*.alltrashrubbishremovalsydney.com.au
*.ato.alltrashrubbishremovalsydney.com.au
*.wildcard.alltrashrubbishremovalsydney.com.au
*.ww16.alltrashrubbishremovalsydney.com.au
alobet503.com
*.alobet503.com
*.games.alobet503.com
*.m.alobet503.com
atone.studio
*.atone.studio
*.22txloc3qb.avidor.site
avidor.site
*.avidor.site
*.uagglmlfhjmgf.avidor.site
*.weggeellmkjef.avidor.site
birthdaymewtru.com
*.birthdaymewtru.com
*.www.birthdaymewtru.com
eagleheightsdental.com.au
*.eagleheightsdental.com.au
enjoyhw.net
*.enjoyhw.net
huds.bet
*.huds.bet
inmobiliariajaviermonti.com
*.inmobiliariajaviermonti.com
inter-statestudio.com
*.inter-statestudio.com
*.random.inter-statestudio.com
*.ww38.inter-statestudio.com
*.anaitwa.kijiji.au
kijiji.au
*.kijiji.au
*.unalisha.kijiji.au
*.wa.kijiji.au
*.wako.kijiji.au
*.ww25.kijiji.au
*.ya.kijiji.au
lanacutie.com
*.lanacutie.com
*.cpanel.movizland.club
*.cpcalendars.movizland.club
*.mail.movizland.club
movizland.club
*.movizland.club
*.staging.movizland.club
*.ww38.movizland.club
ms488.xyz
*.ms488.xyz
*.ww25.ms488.xyz
*.ww38.ms488.xyz
mudanzalima.website
*.mudanzalima.website
*.1.p4ho.site
*.25.p4ho.site
*.38.p4ho.site
*.api.p4ho.site
*.bbs.p4ho.site
*.dev.p4ho.site
*.mail.p4ho.site
p4ho.site
*.p4ho.site
*.test.p4ho.site
*.ww1.p4ho.site
*.ww25.p4ho.site
*.ww3.p4ho.site
*.dickssportinggoods.park-co.com
park-co.com
*.park-co.com
prodajaklima.me
*.prodajaklima.me
*.www.prodajaklima.me
tiopatinhaspersonalizados.com
*.tiopatinhaspersonalizados.com
trytobuy.cc
*.trytobuy.cc
*.shop.wicked.bio
*.sitemap.wicked.bio
*.sitemaps.wicked.bio
wicked.bio
*.wicked.bio
*.www.wicked.bio
x-one.bet
*.x-one.bet
Other domains in certificate