Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=tiger.works
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 04, 2026
Valid Until
May 05, 2026
76 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
55:30:EE:FF:FA:66:C4:BA:FD:19:43:AE:A8:79:DF:FD:FB:ED:D3:2E:73:3B:EC:CE:5C:46:F0:E1:3A:54:B3:3C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
spgd.it
*.spgd.it
specialized-accident-748564444.click
*.specialized-accident-748564444.click
spedirefiorionline.it
*.spedirefiorionline.it
sporsepeeeti.com
*.sporsepeeeti.com
sportsfacts.it
*.sportsfacts.it
sspdn.app
*.sspdn.app
steek.it
*.steek.it
stellarrobo.com
*.stellarrobo.com
stljaqjbrxs.com
*.stljaqjbrxs.com
storm-group.com
*.storm-group.com
su66zz.com
*.su66zz.com
sukakkilat69.com
*.sukakkilat69.com
sun52.casa
*.sun52.casa
suncasino.it
*.suncasino.it
svobodaandwilliams.com
*.svobodaandwilliams.com
taking.it
*.taking.it
taxiapp.com.mx
*.taxiapp.com.mx
tennesseetitansshop.com
*.tennesseetitansshop.com
tentjockey.com
*.tentjockey.com
tesaovacax.top
*.tesaovacax.top
themonthly.it
*.themonthly.it
thepennilessgentleman.com
*.thepennilessgentleman.com
theposhcontentugc.com
*.theposhcontentugc.com
thetshirts.it
*.thetshirts.it
thevisavictory.com
*.thevisavictory.com
thewoodshed.co
*.thewoodshed.co
tiger.works
*.tiger.works
tolerometer.com
*.tolerometer.com
top-remote-job.click
*.top-remote-job.click
tospot.it
*.tospot.it
toxdeliveryservice.com
*.toxdeliveryservice.com
trag.it
*.trag.it
transip.org
*.transip.org
transport-tech.com
*.transport-tech.com
travelgracefultrips.xyz
*.travelgracefultrips.xyz
travelodysseycontinues.xyz
*.travelodysseycontinues.xyz
trinitymedia.us
*.trinitymedia.us
tryacresapp.com
*.tryacresapp.com
tt900.cc
*.tt900.cc
turiquezahoy.com
*.turiquezahoy.com
txyzf.buzz
*.txyzf.buzz
ultrapoker.it
*.ultrapoker.it
unclephilmaloof.com
*.unclephilmaloof.com
unicornforms-app.com
*.unicornforms-app.com
unislinkpartnershub.com
*.unislinkpartnershub.com
Other domains in certificate