Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=ultraviewar.net
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 06, 2026
Valid Until
July 05, 2026
39 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
74:20:0F:AB:34:4F:BC:42:B2:93:E8:FA:81:16:DF:3D:A0:D7:DF:E5:5B:F5:52:57:99:50:EE:55:A3:4E:B9:C4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
aldeota.com
*.aldeota.com
*.m.aldeota.com
*.temp.aldeota.com
*.ww1.aldeota.com
*.ww16.aldeota.com
*.ww38.aldeota.com
41371.locker
*.41371.locker
exdesaparecidos.org
*.exdesaparecidos.org
*.mail.exdesaparecidos.org
*.ww25.exdesaparecidos.org
flixitteam.com
*.flixitteam.com
flushjackpot.quest
*.flushjackpot.quest
foundtheatre.org
*.foundtheatre.org
*.fund.foundtheatre.org
*.ww.foundtheatre.org
free-video-call-service.sbs
*.free-video-call-service.sbs
goldfile.net
*.goldfile.net
goldrushvegas.quest
*.goldrushvegas.quest
greenfusion.io
*.greenfusion.io
hammarine.com
*.hammarine.com
kk999.monster
*.kk999.monster
*.secure.kk999.monster
lionel999.net
*.lionel999.net
millstonecoffee.com
*.millstonecoffee.com
mummyapoministries.com
*.mummyapoministries.com
mw4rsdl.top
*.mw4rsdl.top
mysharehoulder.biz
*.mysharehoulder.biz
neom.market
*.neom.market
nexgenmarketer.in
*.nexgenmarketer.in
nexusoptical.com
*.nexusoptical.com
nothing-learn-blog.xyz
*.nothing-learn-blog.xyz
oghhv.claims
*.oghhv.claims
popfizzinc.com
*.popfizzinc.com
potem.site
*.potem.site
pr73ventures.com
*.pr73ventures.com
rmuqyst1584.vip
*.rmuqyst1584.vip
services10mx.sbs
*.services10mx.sbs
solid-thinking.com
*.solid-thinking.com
*.ww38.solid-thinking.com
supportsystemsai.com
*.supportsystemsai.com
treviristorantellc.com
*.treviristorantellc.com
ultraviewar.net
*.ultraviewar.net
*.ww25.ultraviewar.net
wtita.futbol
*.wtita.futbol
www287493.cc
*.www287493.cc
www430081.com
*.www430081.com
www822811.com
*.www822811.com
wyjsl.care
*.wyjsl.care
xn--6n2avh91i.com
*.xn--6n2avh91i.com
xn--k2rw20d.com
*.xn--k2rw20d.com
xneir.legal
*.xneir.legal
Other domains in certificate