Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=johnnybythesea.biz
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 30, 2026
Valid Until
July 29, 2026
69 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9A:8F:F1:9C:3F:F2:02:05:90:BF:9D:DA:01:60:8B:37:75:4C:73:78:B0:5A:1D:92:42:44:C7:66:C4:B9:17:92
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
selfi.live
*.selfi.live
*.4457.selfi.live
*.ww38.selfi.live
18999.life
*.18999.life
*.ww38.18999.life
bema.life
*.bema.life
*.com.bema.life
*.gov.bema.life
*.ww38.bema.life
emprendedoresia.online
*.emprendedoresia.online
*.staging.emprendedoresia.online
*.app.giftview.net
*.demo.giftview.net
giftview.net
*.giftview.net
*.localhost.giftview.net
*.owa.giftview.net
*.remote.giftview.net
*.vpn.giftview.net
*.webdisk.giftview.net
*.dashboard.johnnybythesea.biz
*.explorer.johnnybythesea.biz
*.insight.johnnybythesea.biz
johnnybythesea.biz
*.johnnybythesea.biz
*.m.johnnybythesea.biz
*.remote.johnnybythesea.biz
*.sitemap.johnnybythesea.biz
*.sitemaps.johnnybythesea.biz
*.wildcard.johnnybythesea.biz
*.www.johnnybythesea.biz
*.ads.juguetesbaratos.com
*.beta.juguetesbaratos.com
*.books.juguetesbaratos.com
*.chat.juguetesbaratos.com
*.cicd.juguetesbaratos.com
*.comune.juguetesbaratos.com
*.data.juguetesbaratos.com
*.directory.juguetesbaratos.com
*.e.juguetesbaratos.com
*.eng.juguetesbaratos.com
*.german.juguetesbaratos.com
*.hotfix.juguetesbaratos.com
*.img.juguetesbaratos.com
juguetesbaratos.com
*.juguetesbaratos.com
*.m.juguetesbaratos.com
*.qa.juguetesbaratos.com
*.random.juguetesbaratos.com
*.remote.juguetesbaratos.com
*.sms.juguetesbaratos.com
*.staging.juguetesbaratos.com
*.uat.juguetesbaratos.com
*.video.juguetesbaratos.com
*.ww1.juguetesbaratos.com
*.ww25.juguetesbaratos.com
*.ww38.juguetesbaratos.com
*.connectvpn.norwegian.net
*.flisekompaniet-mo-i-ranae.norwegian.net
*.gateway.norwegian.net
*.hviyjsslvpn.norwegian.net
norwegian.net
*.norwegian.net
*.virtual.norwegian.net
*.vpn2.norwegian.net
*.ww.norwegian.net
totalsportsek.pro
*.totalsportsek.pro
*.ww2.totalsportsek.pro
*.ww38.totalsportsek.pro
*.jt2y8.www1.bet
www1.bet
*.www1.bet
*.admin.xuping.in
*.api.xuping.in
*.app.xuping.in
*.blog.xuping.in
*.demo.xuping.in
*.dev.xuping.in
*.e64485f3-43ce-4abe-ae76-e7565f6dc323.xuping.in
*.test.xuping.in
xuping.in
*.xuping.in
*.ww38.zavpinaqxg.com
zavpinaqxg.com
*.zavpinaqxg.com
Other domains in certificate