Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=midx.cc
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 03, 2026
Valid Until
August 01, 2026
54 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CE:3D:68:E8:25:91:C5:49:FE:00:8A:27:13:CA:B5:7A:16:4C:5B:E5:56:FA:49:08:A3:B5:C3:85:0B:27:4F:26
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
shoestring.io
*.shoestring.io
086.us
*.086.us
*.admin.086.us
3648.win
*.3648.win
66611.my
*.66611.my
69425.win
*.69425.win
88y.baby
*.88y.baby
977308a6.sbs
*.977308a6.sbs
alamedalongdistancemovers.cc
*.alamedalongdistancemovers.cc
ape1.com
*.ape1.com
aqttv.qpon
*.aqttv.qpon
asiaslot99.shop
*.asiaslot99.shop
astage.co.kr
*.astage.co.kr
bettywin.com
*.bettywin.com
bitcket.com
*.bitcket.com
cougar-brand.com
*.cougar-brand.com
cutturl.xyz
*.cutturl.xyz
midx.cc
*.midx.cc
mulrgupsawkjycxblgyp.com
*.mulrgupsawkjycxblgyp.com
mypicturemania.com
*.mypicturemania.com
newsttcbd.com
*.newsttcbd.com
nextvisionstep.sbs
*.nextvisionstep.sbs
njmzg.cc
*.njmzg.cc
nkqtp.gdn
*.nkqtp.gdn
nlirf.qpon
*.nlirf.qpon
nlwmq.gdn
*.nlwmq.gdn
nyala.in
*.nyala.in
ok54592.cc
*.ok54592.cc
*.demo.opsias.com
opsias.com
*.opsias.com
paid-sperm-donation-at-zdwae.sbs
*.paid-sperm-donation-at-zdwae.sbs
pest-control-dk-4555.sbs
*.pest-control-dk-4555.sbs
pgjeyh.equipment
*.pgjeyh.equipment
putri88.blog
*.putri88.blog
qfdgcd.credit
*.qfdgcd.credit
quote.baby
*.quote.baby
rajamajong.shop
*.rajamajong.shop
rastreiodesuaencomenda.com
*.rastreiodesuaencomenda.com
retold.co
*.retold.co
roomy.rent
*.roomy.rent
sahr0.com
*.sahr0.com
seo-jago.org
*.seo-jago.org
sf-submission.com
*.sf-submission.com
trymsprepeats.com
*.trymsprepeats.com
ugxursh.shop
*.ugxursh.shop
ultimate.solar
*.ultimate.solar
Other domains in certificate