Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=defacto.cc
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
May 29, 2026
Valid Until
August 27, 2026
66 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
70:A6:BB:E4:31:FC:CB:2D:70:29:37:29:2B:64:A5:1C:D4:1C:F6:B5:CA:53:A2:4B:B4:16:D7:6D:87:E2:A6:E2
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
tangata.com
*.tangata.com
1porriage.me
*.1porriage.me
afandbfortworth.com
*.afandbfortworth.com
*.ww16.afandbfortworth.com
*.ww38.afandbfortworth.com
amarillocarpetcleaning.com
*.amarillocarpetcleaning.com
*.www.amarillocarpetcleaning.com
bigtruck.com.au
*.bigtruck.com.au
*.ww25.bigtruck.com.au
classicindusteries.com
*.classicindusteries.com
*.ww16.classicindusteries.com
*.ww25.classicindusteries.com
copypastme.me
*.copypastme.me
defacto.cc
*.defacto.cc
*.m.defacto.cc
*.app.ensaladacesar.info
*.b4c0dda3-ca0c-433d-881b-042bf444d674.ensaladacesar.info
ensaladacesar.info
*.ensaladacesar.info
*.hostmaster.ensaladacesar.info
*.ns2.ensaladacesar.info
*.ww38.ensaladacesar.info
exophase.me
*.exophase.me
*.cotonou.formonline.site
formonline.site
*.formonline.site
getfiles.uk
*.getfiles.uk
*.h5.getfiles.uk
*.index.getfiles.uk
*.tools.getfiles.uk
hb-editions.com
*.hb-editions.com
*.hostmaster.hb-editions.com
*.invoice.hb-editions.com
hjge5.com
*.hjge5.com
melwoodpets.com
*.melwoodpets.com
*.ww25.melwoodpets.com
*.cat.nebulousonlinegame.com
*.cp.nebulousonlinegame.com
nebulousonlinegame.com
*.nebulousonlinegame.com
*.racktables.nebulousonlinegame.com
*.ww25.nebulousonlinegame.com
*.ww38.nebulousonlinegame.com
*.bexamicrofinance.sheabezi.com
*.blm-sms.sheabezi.com
*.buybezi.sheabezi.com
*.cisscofinancalservices.sheabezi.com
*.dax-loan.sheabezi.com
*.gfsfinancial.sheabezi.com
*.hudumakiganjani.sheabezi.com
*.investment.sheabezi.com
*.linkshare.sheabezi.com
*.microdemo.sheabezi.com
*.nyakipasa.sheabezi.com
*.platform.sheabezi.com
*.posproject.sheabezi.com
*.projectpos.sheabezi.com
*.shangwe.sheabezi.com
sheabezi.com
*.sheabezi.com
*.smartpos.sheabezi.com
*.tunajalidispensary.sheabezi.com
*.tunajalifertilityclinic.sheabezi.com
*.wazabuni-saccos.sheabezi.com
*.hostmaster.teleangiektasien.de
teleangiektasien.de
*.teleangiektasien.de
*.mail.visiontele1.digital
visiontele1.digital
*.visiontele1.digital
waifuis.me
*.waifuis.me
wharo.net
*.wharo.net
*.random.zauberkristall.de
zauberkristall.de
*.zauberkristall.de
Other domains in certificate