Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=sindoor.in
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
June 05, 2026
Valid Until
September 03, 2026
68 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5A:0C:4E:D7:3A:73:32:E3:49:B2:CB:F4:41:96:5D:B4:26:A7:AE:B8:20:57:F2:05:F2:E5:55:71:1F:36:61:14
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
sindoor.in
*.sindoor.in
*.cloud.sindoor.in
*.community.sindoor.in
*.hdjgbzce.sindoor.in
*.hostmaster.sindoor.in
*.prod.sindoor.in
*.ssh.sindoor.in
*.www.sindoor.in
construction-planning-software-nl-8548.sbs
*.construction-planning-software-nl-8548.sbs
corevalor.com
*.corevalor.com
*.ej62tz.fastpaybtc.digital
fastpaybtc.digital
*.fastpaybtc.digital
fvgh.xyz
*.fvgh.xyz
*.bi.kufa.it
*.dashboard.kufa.it
kufa.it
*.kufa.it
*.redash.kufa.it
*.reports.kufa.it
*.stats.kufa.it
*.admin.lifehouse.it
lifehouse.it
*.lifehouse.it
*.mail.lifehouse.it
*.mymail.lifehouse.it
*.outlook.lifehouse.it
*.remote.lifehouse.it
*.32.myfreestyle.com.au
*.abbotts.myfreestyle.com.au
*.cpanel.myfreestyle.com.au
*.freestyleconnectau.myfreestyle.com.au
myfreestyle.com.au
*.myfreestyle.com.au
*.scanmysensor.myfreestyle.com.au
*.scanmysensorau.myfreestyle.com.au
*.staging.myfreestyle.com.au
*.webdisk.myfreestyle.com.au
*.ww25.myfreestyle.com.au
*.346ca646-f14b-44ac-b37c-8a1c7a7f5536.newyorkconcerts2026.com
*.api.newyorkconcerts2026.com
*.app.newyorkconcerts2026.com
*.dashboard.newyorkconcerts2026.com
*.dev.newyorkconcerts2026.com
*.ee617933-a6d4-4154-9e2e-bcdfad7f1802.newyorkconcerts2026.com
*.hryizstg.newyorkconcerts2026.com
*.mail.newyorkconcerts2026.com
*.mailer.newyorkconcerts2026.com
*.marketing.newyorkconcerts2026.com
*.mnplxstg.newyorkconcerts2026.com
*.new.newyorkconcerts2026.com
newyorkconcerts2026.com
*.newyorkconcerts2026.com
*.qa.newyorkconcerts2026.com
*.staging.newyorkconcerts2026.com
*.uat.newyorkconcerts2026.com
*.v1.newyorkconcerts2026.com
*.v2.newyorkconcerts2026.com
*.vpn.newyorkconcerts2026.com
*.web.newyorkconcerts2026.com
*.www.newyorkconcerts2026.com
*.yxuzqweb.newyorkconcerts2026.com
*.asl.rieti.com
*.autodiscover.rieti.com
*.farainsabina.rieti.com
*.mail.rieti.com
rieti.com
*.rieti.com
*.runners.rieti.com
*.tri.rieti.com
shpstksandbox.com
*.shpstksandbox.com
*.www.shpstksandbox.com
*.admin.t-obile.nl
*.bi.t-obile.nl
t-obile.nl
*.t-obile.nl
*.uat.validy-corretora.info
validy-corretora.info
*.validy-corretora.info
*.insight.xn--fiqwom84afyf.com
*.wildcard.xn--fiqwom84afyf.com
*.www.xn--fiqwom84afyf.com
xn--fiqwom84afyf.com
*.xn--fiqwom84afyf.com
Other domains in certificate