Open
Cached
·
2h ago
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=afrodite.io
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 21, 2026
Valid Until
August 19, 2026
73 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3E:DE:AC:8F:2E:48:17:7A:B1:45:AF:D4:29:4E:DC:26:E3:9F:7B:FC:06:FC:20:E5:E9:D8:10:58:E5:A4:F1:96
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
simulatesafe.com
*.simulatesafe.com
afrodite.io
*.afrodite.io
allmedical.co
*.allmedical.co
assuredtraveladventures.live
*.assuredtraveladventures.live
beta138fox.baby
*.beta138fox.baby
ci-badger.com
*.ci-badger.com
criminal-lawyers-847748502.click
*.criminal-lawyers-847748502.click
czechseo.com
*.czechseo.com
dailyturd.com
*.dailyturd.com
dyaze.com
*.dyaze.com
dyive.com
*.dyive.com
k68c.shop
*.k68c.shop
kiki888ss.xyz
*.kiki888ss.xyz
lagalaxy1ss.xyz
*.lagalaxy1ss.xyz
lagalaxy1v2.xyz
*.lagalaxy1v2.xyz
riesgoreputacional.com
*.riesgoreputacional.com
roommatestudio.com
*.roommatestudio.com
roomocreativestudio.com
*.roomocreativestudio.com
rotary-bushing-712857095.click
*.rotary-bushing-712857095.click
security-jobs-inno-973.sbs
*.security-jobs-inno-973.sbs
senior-cruises.click
*.senior-cruises.click
seniorinsurance.biz
*.seniorinsurance.biz
simplyvacation.live
*.simplyvacation.live
simtestpath.com
*.simtestpath.com
singleswearblack.com
*.singleswearblack.com
sodaeffect.com
*.sodaeffect.com
streaming.qpon
*.streaming.qpon
superscore571.info
*.superscore571.info
tenectalyse.com
*.tenectalyse.com
testcloak.com
*.testcloak.com
testcloaker.com
*.testcloaker.com
thealpinetours.com
*.thealpinetours.com
tiktok9964.vip
*.tiktok9964.vip
tommybahamaa.shop
*.tommybahamaa.shop
ts911v2.xyz
*.ts911v2.xyz
tubestie.com
*.tubestie.com
tyima.com
*.tyima.com
tyongk.top
*.tyongk.top
ultrasaga383.shop
*.ultrasaga383.shop
valueplusfood.food
*.valueplusfood.food
veilbrowse.com
*.veilbrowse.com
xx2877.cc
*.xx2877.cc
yenah.tech
*.yenah.tech
zbgzhm.top
*.zbgzhm.top
zipalabs.guide
*.zipalabs.guide
Other domains in certificate