Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=vidjoy.net
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
May 31, 2026
Valid Until
August 29, 2026
83 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A3:4C:BD:ED:86:EC:BB:D0:0A:AC:A0:21:90:20:2B:C0:73:8C:94:14:9F:35:04:EC:CC:A9:FA:17:B6:EF:54:37
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
68 domains
startonlinebanking.org
*.startonlinebanking.org
1sm.site
*.1sm.site
acocadostore.de
*.acocadostore.de
aponbank.de
*.aponbank.de
campus-cravings.site
*.campus-cravings.site
dian4dpro.xyz
*.dian4dpro.xyz
*.ww25.dian4dpro.xyz
internationalstudent.au
*.internationalstudent.au
*.random.internationalstudent.au
*.wildcard.internationalstudent.au
*.en.leve.company
*.jp.leve.company
leve.company
*.leve.company
marinfitness.net
*.marinfitness.net
*.ww38.marinfitness.net
*.agent.modellus.co
*.lsebrwzq.modellus.co
modellus.co
*.modellus.co
*.ww11.modellus.co
*.ww25.modellus.co
*.ww31.modellus.co
*.ww38.modellus.co
montirao.xyz
*.montirao.xyz
*.pay.montirao.xyz
msditiharpurdeoria.online
*.msditiharpurdeoria.online
nommo.studio
*.nommo.studio
pantum-russia.ru
*.pantum-russia.ru
paybqck.de
*.paybqck.de
pianwo.com
*.pianwo.com
*.random.pianwo.com
safeplacechildadvocacy.org
*.safeplacechildadvocacy.org
*.ww38.safeplacechildadvocacy.org
*.asmpx.vidjoy.net
*.ohocn.vidjoy.net
*.ohone.vidjoy.net
*.responder.vidjoy.net
vidjoy.net
*.vidjoy.net
*.mail.visionmaxbr.online
visionmaxbr.online
*.visionmaxbr.online
worldcupfootball.eu
*.worldcupfootball.eu
*.ww25.xhava.me
xhava.me
*.xhava.me
xn--sabler-67a.com
*.xn--sabler-67a.com
*.pop.yourfastadvices.com
yourfastadvices.com
*.yourfastadvices.com
Other domains in certificate