Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=granitemarbleug.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 11, 2026
Valid Until
August 09, 2026
63 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
51:09:32:25:96:DC:3A:D2:61:FB:42:DC:7E:3B:CA:42:3D:44:33:83:04:6A:91:25:F1:1A:F9:E9:B4:CE:7D:36
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
boostme.click
*.boostme.click
*.16dc24e2-d20a-40f6-9516-317d7319cbb2.boostme.click
akcz.my
*.akcz.my
*.admin.alittlebobby.com
alittlebobby.com
*.alittlebobby.com
*.api.alittlebobby.com
*.test.alittlebobby.com
*.www.alittlebobby.com
altcointradingmarket.com
*.altcointradingmarket.com
andresh-art.com
*.andresh-art.com
annanina.lol
*.annanina.lol
*.bay.annanina.lol
*.bito.annanina.lol
*.web.annanina.lol
apartamento-fr-5.sbs
*.apartamento-fr-5.sbs
august2018calendar.net
*.august2018calendar.net
babyhappybliss.com
*.babyhappybliss.com
barbar77t.kim
*.barbar77t.kim
boostit.click
*.boostit.click
*.development.boostit.click
*.smtps.boostit.click
*.support.boostit.click
deepxt.cfd
*.deepxt.cfd
deepxt.sbs
*.deepxt.sbs
deeragentic.com
*.deeragentic.com
granitemarbleug.com
*.granitemarbleug.com
idealsurrealarrangements.com
*.idealsurrealarrangements.com
idsawer138.asia
*.idsawer138.asia
iglodhikez.com
*.iglodhikez.com
ilnuf.cc
*.ilnuf.cc
jadiberkahwin88.top
*.jadiberkahwin88.top
lv111.cn
*.lv111.cn
mainnyadisiniaja.com
*.mainnyadisiniaja.com
meongwinrajacasino.cfd
*.meongwinrajacasino.cfd
mstrxtv55.xyz
*.mstrxtv55.xyz
mwg38.icu
*.mwg38.icu
sdkkweing.com
*.sdkkweing.com
sdkwee2ing.com
*.sdkwee2ing.com
security-jobs-wars-266.sbs
*.security-jobs-wars-266.sbs
solvizea.com
*.solvizea.com
steel-level.online
*.steel-level.online
stellarforgetech.com
*.stellarforgetech.com
stellargrovegroup.com
*.stellargrovegroup.com
supremelinden.com
*.supremelinden.com
swanpull.com
*.swanpull.com
tmpoo-1.sbs
*.tmpoo-1.sbs
togywe.pro
*.togywe.pro
xwuey9c85e.xyz
*.xwuey9c85e.xyz
yas8491.cc
*.yas8491.cc
yjrtf.org
*.yjrtf.org
Other domains in certificate