Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=minionlab.io
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 25, 2026
Valid Until
July 24, 2026
74 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
36:F5:98:96:59:31:8D:71:94:0D:04:65:91:06:C4:07:C7:37:77:DF:B3:E4:D9:B2:36:4A:0D:25:D4:13:E0:14
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
langco.com
*.langco.com
*.autodiscover.langco.com
*.cloud.langco.com
*.ecp.langco.com
*.ex2013.langco.com
*.exmb1.langco.com
*.laguna.langco.com
*.mail-in.langco.com
*.mail04.langco.com
*.mail08.langco.com
*.mail1.langco.com
*.mail2.langco.com
*.mailhub.langco.com
*.oldmail.langco.com
*.securemail.langco.com
*.2712772b-e2cd-4183-a38d-3070c317d363.angel.direct
*.3e776da1-918d-48bf-b449-d8dab80a1c7b.angel.direct
*.3f0c0a11-7dda-4ff8-9bdb-5c059897bae0.angel.direct
*.5d19b24a-76ff-49ed-b193-31ad107d2687.angel.direct
*.8916e43c-2964-407d-bc8d-03886d6bb730.angel.direct
*.admin.angel.direct
angel.direct
*.angel.direct
*.api.angel.direct
*.backup.angel.direct
*.beta.angel.direct
*.dev.angel.direct
*.hiolohostmaster.angel.direct
*.hostmaster.angel.direct
*.m.angel.direct
*.office.angel.direct
*.portal.angel.direct
*.ra2m2x.angel.direct
*.suporte.angel.direct
*.uat.angel.direct
*.www.angel.direct
*.zbxqira2m2x.angel.direct
*.cdn.fakiri.studio
fakiri.studio
*.fakiri.studio
greenfinger.co.uk
*.greenfinger.co.uk
jsixwood.xyz
*.jsixwood.xyz
*.kubernetes.jsixwood.xyz
*.ww25.jsixwood.xyz
magicpic.cc
*.magicpic.cc
*.invite.minionlab.io
minionlab.io
*.minionlab.io
*.ref.minionlab.io
myclients.co.uk
*.myclients.co.uk
*.cdn.rhino.bio
*.report.rhino.bio
rhino.bio
*.rhino.bio
*.sitemap.rhino.bio
*.api.sunriseelementary.com
*.autoconfig.sunriseelementary.com
*.bi.sunriseelementary.com
*.cloudapp.sunriseelementary.com
*.exchange.sunriseelementary.com
*.intra.sunriseelementary.com
*.pop.sunriseelementary.com
*.ravpn.sunriseelementary.com
*.rds1.sunriseelementary.com
*.redash.sunriseelementary.com
*.remoto.sunriseelementary.com
sunriseelementary.com
*.sunriseelementary.com
*.supersets.sunriseelementary.com
*.vpn.sunriseelementary.com
*.gov.theroyalechulan.com
theroyalechulan.com
*.theroyalechulan.com
verizonbenefitsconection.com
*.verizonbenefitsconection.com
*.ivciounyxuj.westcannabis.com
*.scm.westcannabis.com
westcannabis.com
*.westcannabis.com
*.wildcard.westcannabis.com
*.test.xlsix.com
xlsix.com
*.xlsix.com
zap.uk
*.zap.uk
Other domains in certificate