Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=rhymekids.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
January 01, 2026
Valid Until
April 01, 2026
44 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
82:0A:78:CE:AD:61:49:C9:E7:AF:83:18:D5:1B:2E:BE:49:AE:53:40:E3:D2:B3:02:30:0B:8A:44:2D:32:92:AA
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
smartproject.site
*.smartproject.site
*.error501.smartproject.site
*.s.smartproject.site
*.www.smartproject.site
beppu-morisawa.com
*.beppu-morisawa.com
bidsimulator.com
*.bidsimulator.com
*.data.bidsimulator.com
*.go.bidsimulator.com
*.list.bidsimulator.com
*.ws.bidsimulator.com
*.wss.bidsimulator.com
*.ww25.bidsimulator.com
*.appthings.breakoutchart.in
breakoutchart.in
*.breakoutchart.in
*.cb.breakoutchart.in
*.chat.breakoutchart.in
*.console.breakoutchart.in
*.course.breakoutchart.in
*.ebuk.breakoutchart.in
*.food.breakoutchart.in
*.learntrade.breakoutchart.in
*.matr.breakoutchart.in
*.matradmin.breakoutchart.in
*.matrclient.breakoutchart.in
*.matrnode.breakoutchart.in
*.pos.breakoutchart.in
*.radio.breakoutchart.in
*.shahulwb.breakoutchart.in
*.sheet.breakoutchart.in
*.sunnimanzil.breakoutchart.in
*.tradingtips.breakoutchart.in
*.upos.breakoutchart.in
*.video.breakoutchart.in
*.waapp.breakoutchart.in
*.woo.breakoutchart.in
cliniclabs.com.au
*.cliniclabs.com.au
*.go.cliniclabs.com.au
*.results.cliniclabs.com.au
crazyteens.net
*.crazyteens.net
decontaminationflix.com
*.decontaminationflix.com
ferahfeza-ist.com
*.ferahfeza-ist.com
*.autodiscover.fiducial.com.au
fiducial.com.au
*.fiducial.com.au
*.remote.fiducial.com.au
fortix2.com
*.fortix2.com
garagedoors.au
*.garagedoors.au
helpsophia.com
*.helpsophia.com
hheastmotorsports.net
*.hheastmotorsports.net
hummerhire.au
*.hummerhire.au
indir-zpf.com
*.indir-zpf.com
*.api.luckyday.live
*.cpcalendars.luckyday.live
*.imap.luckyday.live
*.iphone13pro.luckyday.live
*.iphone14.luckyday.live
luckyday.live
*.luckyday.live
*.playstation5.luckyday.live
*.royalcaribbeancruise.luckyday.live
*.sheingiftcard.luckyday.live
*.sitemaps.luckyday.live
*.solargenerator.luckyday.live
*.webmail.luckyday.live
*.www.luckyday.live
msucommunityresources.org
*.msucommunityresources.org
*.kuna.odo.au
*.nimu.odo.au
odo.au
*.odo.au
rhymekids.com
*.rhymekids.com
*.sitemap.vertexfxmkts.com
vertexfxmkts.com
*.vertexfxmkts.com
Other domains in certificate