Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=paid-sperm-donation-de-234tl.sbs
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 11, 2026
Valid Until
August 09, 2026
74 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F6:DE:01:47:4E:E4:E9:46:1F:1C:08:5F:9A:BD:9B:39:BB:56:9E:D6:8C:3E:8E:DF:38:39:F8:22:96:D3:D0:43
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
scmpacdn.com
*.scmpacdn.com
*.32.scmpacdn.com
*.aurakingdom.scmpacdn.com
*.comos.scmpacdn.com
*.os.scmpacdn.com
astrazenecaapps.xyz
*.astrazenecaapps.xyz
*.ww25.astrazenecaapps.xyz
*.ww38.astrazenecaapps.xyz
*.12l.f4.work
*.12o.f4.work
*.164.f4.work
*.165.f4.work
*.166.f4.work
*.167.f4.work
*.168.f4.work
*.197.f4.work
*.19f.f4.work
*.19k.f4.work
*.1en.f4.work
*.1ks.f4.work
*.c5.f4.work
f4.work
*.f4.work
*.flow.f4.work
*.production.f4.work
*.shop.f4.work
*.tasks.f4.work
*.v9.f4.work
*.ve.f4.work
*.vf.f4.work
*.vj.f4.work
*.vm.f4.work
*.ww17.f4.work
*.ww25.f4.work
habitareimmobili.com
*.habitareimmobili.com
*.regional.habitareimmobili.com
paid-sperm-donation-de-234tl.sbs
*.paid-sperm-donation-de-234tl.sbs
revenueprospyre.co
*.revenueprospyre.co
search-for-all-in-one-trading-software-in-5672.sbs
*.search-for-all-in-one-trading-software-in-5672.sbs
search-for-commodities-trading-in-5672.sbs
*.search-for-commodities-trading-in-5672.sbs
search-for-currency-trading-in-5672.sbs
*.search-for-currency-trading-in-5672.sbs
search-for-online-trading-in-5672.sbs
*.search-for-online-trading-in-5672.sbs
search-for-stock-trading-in-5672.sbs
*.search-for-stock-trading-in-5672.sbs
security-guard-jobs100007.sbs
*.security-guard-jobs100007.sbs
solar-panel-installation-ww.sbs
*.solar-panel-installation-ww.sbs
solarpolis.com
*.solarpolis.com
*.wwww.solarpolis.com
tampak.lat
*.tampak.lat
thedonutadvertisingboost.co
*.thedonutadvertisingboost.co
topnotchgardeners.live
*.topnotchgardeners.live
trenchtrend.shop
*.trenchtrend.shop
tvreszletfizetessel-hu09.sbs
*.tvreszletfizetessel-hu09.sbs
*.demo.virtualbrushart.digital
*.staging.virtualbrushart.digital
*.test.virtualbrushart.digital
*.uat.virtualbrushart.digital
virtualbrushart.digital
*.virtualbrushart.digital
votfw7.top
*.votfw7.top
vuoriusstore.us
*.vuoriusstore.us
*.ww25.vuoriusstore.us
wantjobapply-dish-dishwashing-offer444.sbs
*.wantjobapply-dish-dishwashing-offer444.sbs
what3wordsforbusiness.one
*.what3wordsforbusiness.one
workershiring-care-caregives-needd459.sbs
*.workershiring-care-caregives-needd459.sbs
yu2027.cc
*.yu2027.cc
Other domains in certificate