Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=fjlpw.xyz
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 20, 2026
Valid Until
July 19, 2026
71 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5B:B7:9E:47:20:BA:16:46:6C:F9:0A:7F:0F:9F:82:BA:27:BD:3D:2A:16:0F:61:F1:CD:8D:17:1D:C1:78:F3:94
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
blessedmonk.com
*.blessedmonk.com
*.api.blessedmonk.com
*.app.blessedmonk.com
*.apps.blessedmonk.com
*.click.blessedmonk.com
*.log.blessedmonk.com
*.panel.blessedmonk.com
*.portal.blessedmonk.com
*.ssl.blessedmonk.com
*.ssl3.blessedmonk.com
*.vdi.blessedmonk.com
*.zoom.blessedmonk.com
apsafe.club
*.apsafe.club
augmentation.com.au
*.augmentation.com.au
cinema4u.site
*.cinema4u.site
*.dev.cinema4u.site
*.random.cinema4u.site
counfused.com
*.counfused.com
*.dom.counfused.com
deker.org
*.deker.org
*.forum.deker.org
*.remoto.deker.org
*.sites.deker.org
discassets.com
*.discassets.com
*.qa.discassets.com
*.acc.fjlpw.xyz
fjlpw.xyz
*.fjlpw.xyz
*.mail.fjlpw.xyz
*.random.fjlpw.xyz
*.webmail.fjlpw.xyz
*.ww25.fjlpw.xyz
*.ww38.fjlpw.xyz
kekman.net
*.kekman.net
*.analytics.ludos.it
*.bigdata.ludos.it
*.com.ludos.it
*.hostmaster.ludos.it
ludos.it
*.ludos.it
*.metrics.ludos.it
*.redash.ludos.it
*.reporting.ludos.it
*.superset-beta.ludos.it
*.acicomo.medice.us
*.amigo.medice.us
medice.us
*.medice.us
paycam.asia
*.paycam.asia
*.tapi.paycam.asia
*.wal.paycam.asia
proofreader.com.au
*.proofreader.com.au
*.ww25.proofreader.com.au
radiotvrosadesaron.com
*.radiotvrosadesaron.com
*.whm.radiotvrosadesaron.com
*.comune.ronnielomague.space
ronnielomague.space
*.ronnielomague.space
*.www.ronnielomague.space
*.mail.sparkdata.co
sparkdata.co
*.sparkdata.co
texhfyp.com
*.texhfyp.com
trchfyp.com
*.trchfyp.com
upesadmissions.com
*.upesadmissions.com
*.citrix.verizonqireless.com
*.cloudmail.verizonqireless.com
*.eas.verizonqireless.com
verizonqireless.com
*.verizonqireless.com
*.secure.whatpadd.com
whatpadd.com
*.whatpadd.com
*.1bb1c.xgrw1ai.top
xgrw1ai.top
*.xgrw1ai.top
Other domains in certificate