Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=shadowexploit.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 04, 2026
Valid Until
May 05, 2026
84 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D6:65:45:B0:F8:84:05:DD:C1:3D:9F:44:03:B6:B7:9C:54:5B:62:C9:29:A8:64:97:72:CC:11:DA:F0:09:F4:7D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
sonomafares.com
*.sonomafares.com
shadowexploit.com
*.shadowexploit.com
shopused.it
*.shopused.it
signo.it
*.signo.it
smartafricansafaristz.com
*.smartafricansafaristz.com
snacksville.com
*.snacksville.com
soda88.online
*.soda88.online
songca.com
*.songca.com
soupayam.cfd
*.soupayam.cfd
stemmovement.com
*.stemmovement.com
suffer.it
*.suffer.it
summitquest.org
*.summitquest.org
sunnyskyvacation.live
*.sunnyskyvacation.live
superscally.com
*.superscally.com
suster123i.com
*.suster123i.com
thisbigcity.it
*.thisbigcity.it
thisbooknext.com
*.thisbooknext.com
thoughtfulfitnessroutine.run
*.thoughtfulfitnessroutine.run
thrillingvacationtrails.xyz
*.thrillingvacationtrails.xyz
transsexuals.it
*.transsexuals.it
trivelle.it
*.trivelle.it
ugres.org
*.ugres.org
ummmgl.com
*.ummmgl.com
uncledkoe.shop
*.uncledkoe.shop
unitedbudget.com
*.unitedbudget.com
uoldpveg.xyz
*.uoldpveg.xyz
uuu6789.top
*.uuu6789.top
uuu8885.top
*.uuu8885.top
variete.it
*.variete.it
vn88bet.click
*.vn88bet.click
vulca.sbs
*.vulca.sbs
vv7862.com
*.vv7862.com
w13721593.com
*.w13721593.com
walkcloset.com
*.walkcloset.com
weatherbyarmsusa.com
*.weatherbyarmsusa.com
websbayrntilarni3.xyz
*.websbayrntilarni3.xyz
weighingscales.in
*.weighingscales.in
westmorecollege.org
*.westmorecollege.org
whot.it
*.whot.it
winningthedeal.com
*.winningthedeal.com
winningwishes.com
*.winningwishes.com
woiabuvs.xyz
*.woiabuvs.xyz
wordbook.xyz
*.wordbook.xyz
work43.com
*.work43.com
www01003.vip
*.www01003.vip
Other domains in certificate