Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=auto-pocket.co
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
June 12, 2026
Valid Until
September 10, 2026
87 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3D:99:3D:BA:86:6B:C6:52:1A:FB:99:0D:D0:8E:F9:F8:99:C9:98:76:59:5B:87:DE:26:A1:74:64:C6:BD:EB:EF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
88 domains
streampolis.com
*.streampolis.com
*.admin.streampolis.com
*.c6325e7c-8fc8-48b7-9224-12ece0a8fc8c.streampolis.com
*.demo.streampolis.com
*.dev.streampolis.com
*.dpnjwvet.streampolis.com
*.test.streampolis.com
*.vpn.streampolis.com
*.www.streampolis.com
*.app.auto-pocket.co
auto-pocket.co
*.auto-pocket.co
*.demo.auto-pocket.co
comfy.bio
*.comfy.bio
*.sitemaps.comfy.bio
*.25776.qdajj.cn
*.83619.qdajj.cn
*.bqcx.qdajj.cn
*.btc.qdajj.cn
*.lwawe26457.qdajj.cn
*.map.qdajj.cn
*.maps.qdajj.cn
qdajj.cn
*.qdajj.cn
*.sitemap.qdajj.cn
*.vmc.qdajj.cn
*.vq.qdajj.cn
*.wvq.qdajj.cn
*.50bdd6e8-302d-46c9-856b-29b548318480.sulfate.free
*.5209e18a-a65b-4427-b06f-585b770b1c1d.sulfate.free
*.72piza.sulfate.free
*.74957f23-470d-4346-91a4-0541251f875b.sulfate.free
*.account.sulfate.free
*.admin.sulfate.free
*.api.sulfate.free
*.app.sulfate.free
*.assets.sulfate.free
*.backup.sulfate.free
*.biolage.sulfate.free
*.blog.sulfate.free
*.chbgiogx.sulfate.free
*.ddceovxjkkogx.sulfate.free
*.demo.sulfate.free
*.dev.sulfate.free
*.hair.sulfate.free
*.harmoer.sulfate.free
*.mask.sulfate.free
*.mdacne.sulfate.free
*.ogx.sulfate.free
*.or.sulfate.free
*.paraben-fre.sulfate.free
*.pireogy.sulfate.free
*.portal.sulfate.free
*.redken.sulfate.free
*.shampoo.sulfate.free
*.shop.sulfate.free
*.staging.sulfate.free
sulfate.free
*.sulfate.free
*.sunsilk.sulfate.free
*.test.sulfate.free
*.tressemme.sulfate.free
*.uat.sulfate.free
*.vxjkkogx.sulfate.free
*.www.sulfate.free
*.access.textilea.com
*.m.textilea.com
*.nieuw.textilea.com
*.portal.textilea.com
*.random.textilea.com
*.sitemaps.textilea.com
textilea.com
*.textilea.com
*.insight.xn--6cvr7k.com
*.m.xn--6cvr7k.com
*.msk.xn--6cvr7k.com
*.www.xn--6cvr7k.com
xn--6cvr7k.com
*.xn--6cvr7k.com
*.m.xn--msvn2d.com
*.ppt.xn--msvn2d.com
*.sitemaps.xn--msvn2d.com
xn--msvn2d.com
*.xn--msvn2d.com
*.xn--oiyq6hjz6a.xn--msvn2d.com
*.yy.xn--msvn2d.com
Other domains in certificate