Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=drinkinglaws.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 11, 2026
Valid Until
August 09, 2026
43 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
85:D2:D4:F0:CE:9A:9B:BC:F5:02:B3:AD:EC:D8:E2:94:91:C1:13:06:E8:5B:91:33:3D:FE:4D:1D:60:58:2B:94
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
drinkinglaws.com
*.drinkinglaws.com
*.blog.drinkinglaws.com
*.cdn.drinkinglaws.com
*.mm.drinkinglaws.com
*.nsk.drinkinglaws.com
*.volga.drinkinglaws.com
aduz.com
*.aduz.com
*.comune.aduz.com
*.m.aduz.com
*.mail.aduz.com
*.mx.aduz.com
*.random.aduz.com
*.store.aduz.com
*.wiki.aduz.com
*.access.appleandservice.com
appleandservice.com
*.appleandservice.com
*.autoconfig.appleandservice.com
*.gp.appleandservice.com
chkz735.pro
*.chkz735.pro
cxnkt.town
*.cxnkt.town
futureaudiencenetwork2.com
*.futureaudiencenetwork2.com
*.a.goldfungus.com
*.admin.goldfungus.com
*.api.goldfungus.com
*.autodiscover.goldfungus.com
*.cpanel.goldfungus.com
*.dev.goldfungus.com
*.f39c74c0-1eca-4b46-92bd-88a30f01c533.goldfungus.com
*.fbooksuperpack.goldfungus.com
goldfungus.com
*.goldfungus.com
*.mail.goldfungus.com
*.mesellhealth.goldfungus.com
*.test.goldfungus.com
*.tumblerincomeformula.goldfungus.com
*.vpn.goldfungus.com
*.webdisk.goldfungus.com
*.webmail.goldfungus.com
*.wfljawebmail.goldfungus.com
*.www.goldfungus.com
hacking.one
*.hacking.one
*.admin.iosxw.sbs
*.api.iosxw.sbs
*.assets.iosxw.sbs
*.auth.iosxw.sbs
*.gpt.iosxw.sbs
iosxw.sbs
*.iosxw.sbs
*.m.iosxw.sbs
*.pan.iosxw.sbs
*.qm.iosxw.sbs
*.sign.iosxw.sbs
*.tv.iosxw.sbs
*.ww38.iosxw.sbs
*.yy.iosxw.sbs
lulsr.town
*.lulsr.town
mgdzclub.com
*.mgdzclub.com
*.mx.rugbygym.com
*.perm.rugbygym.com
rugbygym.com
*.rugbygym.com
*.service.rugbygym.com
*.2.tarmizishukri.info
*.apps.tarmizishukri.info
*.go.tarmizishukri.info
*.mx0.tarmizishukri.info
*.new.tarmizishukri.info
*.owa.tarmizishukri.info
*.poczta.tarmizishukri.info
*.ranet.tarmizishukri.info
tarmizishukri.info
*.tarmizishukri.info
*.www2.tarmizishukri.info
*.autodiscover.webpointer.co.uk
webpointer.co.uk
*.webpointer.co.uk
*.87ffc9e0-6171-4736-8d97-9566c5923fce.xn--lovt0h6xbh05c.com
*.m.xn--lovt0h6xbh05c.com
xn--lovt0h6xbh05c.com
*.xn--lovt0h6xbh05c.com
Other domains in certificate