Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=flatearther.lol
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 16, 2026
Valid Until
July 15, 2026
69 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
40:1C:18:6A:1C:19:88:22:B5:B4:A2:BF:CA:F0:8C:6F:72:43:E7:0F:8E:DE:33:CB:2F:38:17:A6:87:89:E5:EE
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
telex.link
*.telex.link
ahightopmachinery.com
*.ahightopmachinery.com
air-conditioner-19426.click
*.air-conditioner-19426.click
ajmusicproaudio.com
*.ajmusicproaudio.com
audiovr.online
*.audiovr.online
chargepedal.today
*.chargepedal.today
farmington.net
*.farmington.net
find-in-spain-mental-testing.sbs
*.find-in-spain-mental-testing.sbs
flatearther.lol
*.flatearther.lol
freight-bidding-sites-for-brokers.sbs
*.freight-bidding-sites-for-brokers.sbs
gaming-pcs-inno-803.sbs
*.gaming-pcs-inno-803.sbs
halstedstreet.com
*.halstedstreet.com
hcr38.icu
*.hcr38.icu
hdy85.icu
*.hdy85.icu
hebn.com
*.hebn.com
high-hourly-wage-packaging-jobs.shop
*.high-hourly-wage-packaging-jobs.shop
home-care-services-11382.click
*.home-care-services-11382.click
home-designs-38952.click
*.home-designs-38952.click
home-designs-64870.click
*.home-designs-64870.click
home-designs-94548.click
*.home-designs-94548.click
home-equity-loan-12013.click
*.home-equity-loan-12013.click
home-renovate-cb0415.click
*.home-renovate-cb0415.click
home-security-119461251.click
*.home-security-119461251.click
home-wall-888060066.click
*.home-wall-888060066.click
immobilieninserate.net
*.immobilieninserate.net
investment-opportunities-dubai.click
*.investment-opportunities-dubai.click
jjzb.tv
*.jjzb.tv
kingmoviesfox.site
*.kingmoviesfox.site
lovebaby.lat
*.lovebaby.lat
mote-men.com
*.mote-men.com
nearestselfstorageunits.com
*.nearestselfstorageunits.com
nsvaze.com
*.nsvaze.com
oldies.name
*.oldies.name
pet-insurance-171455638.click
*.pet-insurance-171455638.click
pizzamarconis.com
*.pizzamarconis.com
rye8ox.shop
*.rye8ox.shop
security-jobs-ca1.sbs
*.security-jobs-ca1.sbs
td40533.cc
*.td40533.cc
tos.energy
*.tos.energy
ujzsx.sbs
*.ujzsx.sbs
uniquekind.com
*.uniquekind.com
w13723612.com
*.w13723612.com
warmnestinteriors.click
*.warmnestinteriors.click
watanabe-swoffice.com
*.watanabe-swoffice.com
wohnbild.com
*.wohnbild.com
Other domains in certificate