Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=afina-affiliate.space
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
June 05, 2026
Valid Until
September 03, 2026
86 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E6:C0:7D:15:66:E7:57:CC:05:97:C8:BB:C4:3E:AE:50:3D:5D:7F:DC:D3:82:9B:54:02:4A:96:20:E8:F1:0C:C0
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
talend.co
*.talend.co
*.mx.talend.co
*.talend-update.talend.co
*.www.talend.co
afina-affiliate.space
*.afina-affiliate.space
*.api-feature-2.afina-affiliate.space
*.demo.afina-affiliate.space
*.images.afina-affiliate.space
*.offers.afina-affiliate.space
*.secure.afina-affiliate.space
*.4yj7f.anhosting.top
*.5qutp.anhosting.top
*.87ab5.anhosting.top
*.8r9pg.anhosting.top
anhosting.top
*.anhosting.top
*.b5hyr.anhosting.top
*.cg4o5.anhosting.top
*.cxie3.anhosting.top
*.enr3p.anhosting.top
*.feew6.anhosting.top
*.gi6hj1.anhosting.top
*.gjdvb.anhosting.top
*.iovou.anhosting.top
*.kwid9.anhosting.top
*.l7nqb.anhosting.top
*.n2pro.anhosting.top
*.nan1j.anhosting.top
*.nslow.anhosting.top
*.o1ghs.anhosting.top
*.o7p4x.anhosting.top
*.oahlw.anhosting.top
*.orrwv.anhosting.top
*.osc36.anhosting.top
*.qk6fu.anhosting.top
*.qpuov.anhosting.top
*.rnyzj.anhosting.top
*.snx68.anhosting.top
*.u46cv.anhosting.top
*.v3ywp.anhosting.top
*.wslq2.anhosting.top
*.y04uw.anhosting.top
*.yhue2.anhosting.top
*.z4gbs.anhosting.top
*.2l6wm.berry-on-rune.xyz
*.3ugcn.berry-on-rune.xyz
*.6s98n.berry-on-rune.xyz
berry-on-rune.xyz
*.berry-on-rune.xyz
*.cnfr9.berry-on-rune.xyz
*.enr3p.berry-on-rune.xyz
*.iovou.berry-on-rune.xyz
*.nan1j.berry-on-rune.xyz
*.o1ghs.berry-on-rune.xyz
*.qpuov.berry-on-rune.xyz
*.svzzq.berry-on-rune.xyz
*.wsct4.berry-on-rune.xyz
*.api.davidcoupercoach.com
davidcoupercoach.com
*.davidcoupercoach.com
*.tickets.davidcoupercoach.com
*.vpn.davidcoupercoach.com
*.argo.progressione.com
*.ci.progressione.com
progressione.com
*.progressione.com
*.remote.progressione.com
*.superset.progressione.com
*.workflow.progressione.com
*.875dcd32-8794-4046-ba99-bef23d955d19.pujckabezuroku.xyz
*.app.pujckabezuroku.xyz
*.apps.pujckabezuroku.xyz
*.cloud.pujckabezuroku.xyz
*.ittlagateway.pujckabezuroku.xyz
*.kwid9.pujckabezuroku.xyz
*.login.pujckabezuroku.xyz
*.marketing.pujckabezuroku.xyz
*.me7q1.pujckabezuroku.xyz
*.o1ghs.pujckabezuroku.xyz
pujckabezuroku.xyz
*.pujckabezuroku.xyz
*.qakt3.pujckabezuroku.xyz
*.rdweb.pujckabezuroku.xyz
*.stg.pujckabezuroku.xyz
*.tkrqfz.pujckabezuroku.xyz
*.ts.pujckabezuroku.xyz
*.u46cv.pujckabezuroku.xyz
Other domains in certificate