Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=fitnessfuturetrend.run
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 01, 2026
Valid Until
June 30, 2026
48 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
25:69:94:87:50:44:B0:A1:08:A9:37:13:C9:1C:9A:85:99:AE:0E:38:47:AE:E8:E5:77:E0:33:7C:10:58:0F:09
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
shant.it
*.shant.it
*.api.shant.it
*.app.shant.it
*.com.shant.it
*.dash.shant.it
*.demo.shant.it
*.dev.shant.it
*.flowiseai.shant.it
*.hostmaster.shant.it
*.mx.shant.it
*.research.shant.it
*.stats.shant.it
*.status.shant.it
beautytherapycourses.au
*.beautytherapycourses.au
class.poker
*.class.poker
*.www.class.poker
conversionsbyconvertcro.com
*.conversionsbyconvertcro.com
coveredgirl.com
*.coveredgirl.com
cozygardeningretreat.live
*.cozygardeningretreat.live
ember-arcane.cloud
*.ember-arcane.cloud
*.www.ember-arcane.cloud
fermodyl.shop
*.fermodyl.shop
fitnessfuturetrend.run
*.fitnessfuturetrend.run
hmcfc.mov
*.hmcfc.mov
homeservicessparks.com
*.homeservicessparks.com
k6z2dts.top
*.k6z2dts.top
over65home.com
*.over65home.com
paidincorporated.com
*.paidincorporated.com
puhinn.me
*.puhinn.me
rb56.icu
*.rb56.icu
scooterssmokehousebbq.com
*.scooterssmokehousebbq.com
*.wildcard.scooterssmokehousebbq.com
sellercentral.uk
*.sellercentral.uk
*.ww25.sellercentral.uk
tokveim.pro
*.tokveim.pro
*.l1v3f.travelexpertinsights.xyz
*.lkzdx.travelexpertinsights.xyz
*.nan1j.travelexpertinsights.xyz
*.rustore.travelexpertinsights.xyz
travelexpertinsights.xyz
*.travelexpertinsights.xyz
*.alpha.whaatsapp.com
*.analytics.whaatsapp.com
*.beta.whaatsapp.com
*.call.whaatsapp.com
*.chat.whaatsapp.com
*.ci.whaatsapp.com
*.dashboard.whaatsapp.com
*.dev.whaatsapp.com
*.insights.whaatsapp.com
*.mail.whaatsapp.com
*.prod.whaatsapp.com
*.production.whaatsapp.com
*.qa.whaatsapp.com
*.report.whaatsapp.com
*.sniper.whaatsapp.com
*.staging.whaatsapp.com
*.superset.whaatsapp.com
*.test.whaatsapp.com
*.uat.whaatsapp.com
*.visualize.whaatsapp.com
*.web.whaatsapp.com
*.wed.whaatsapp.com
*.wep.whaatsapp.com
whaatsapp.com
*.whaatsapp.com
*.ww16.whaatsapp.com
*.ww38.whaatsapp.com
*.xxx.whaatsapp.com
xmhrr.bid
*.xmhrr.bid
Other domains in certificate