Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=marketingpartners.lat
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 06, 2026
Valid Until
July 05, 2026
46 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
46:05:05:EB:71:D8:59:A3:A0:7F:EA:E4:B5:D0:42:60:18:F8:65:D0:13:03:63:71:FB:4C:B4:A4:46:8E:CC:80
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
123resucue.com
*.123resucue.com
*.flash.123resucue.com
*.partner.123resucue.com
*.random.123resucue.com
*.secure.123resucue.com
*.svn.123resucue.com
*.www.123resucue.com
aulta.com
*.aulta.com
*.ww1.aulta.com
damtube.net
*.damtube.net
*.ww25.damtube.net
*.ww38.damtube.net
*.0f6cb94d-4903-4ac4-a7ed-be8327d16aad.ffuntv.vin
*.api.ffuntv.vin
*.dev.ffuntv.vin
ffuntv.vin
*.ffuntv.vin
*.sitemap.ffuntv.vin
*.www.ffuntv.vin
*.admin.hop88.co
*.api.hop88.co
*.app.hop88.co
*.assets.hop88.co
*.be46ceb1-2395-44fe-81f1-77c99d214421.hop88.co
*.demo.hop88.co
*.dev.hop88.co
hop88.co
*.hop88.co
*.staging.hop88.co
*.iewopdxevt.jpducati.com
*.imap.jpducati.com
*.inbound.jpducati.com
jpducati.com
*.jpducati.com
*.stage.jpducati.com
*.docs.marketingpartners.lat
marketingpartners.lat
*.marketingpartners.lat
*.www.marketingpartners.lat
millet-francois-vin-sancerre.com
*.millet-francois-vin-sancerre.com
minunauto.com
*.minunauto.com
mipuntodeoro.com
*.mipuntodeoro.com
mkcatisistemleri.com
*.mkcatisistemleri.com
mydogwantsthat.com
*.mydogwantsthat.com
nectarpk.com
*.nectarpk.com
newmassagemidland.com
*.newmassagemidland.com
nightyd22.com
*.nightyd22.com
nirvana.chat
*.nirvana.chat
noke-hareru.com
*.noke-hareru.com
nooncandy.de
*.nooncandy.de
northernexploreradventures.com
*.northernexploreradventures.com
oceanqigong.com
*.oceanqigong.com
offcine.com
*.offcine.com
okd.bet
*.okd.bet
olove.chat
*.olove.chat
onesurrealistaday.com
*.onesurrealistaday.com
onlinebloghub.com
*.onlinebloghub.com
onlinesikkha.com
*.onlinesikkha.com
opalpawsdesign.com
*.opalpawsdesign.com
oxbridgewatches.com
*.oxbridgewatches.com
*.he.rebrand.live
*.pay.rebrand.live
rebrand.live
*.rebrand.live
teamserafai.com
*.teamserafai.com
Other domains in certificate