Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=arabmediagroup.info
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
December 26, 2025
Valid Until
March 26, 2026
43 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
60:FE:12:F9:C0:C3:72:85:03:33:3D:86:1A:82:74:A3:93:19:6E:5E:62:4D:02:7B:57:F1:44:E1:B0:BF:7C:6F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
teminix.com
*.teminix.com
*.admin.teminix.com
*.customer.teminix.com
abaftgame.com
*.abaftgame.com
arabmediagroup.info
*.arabmediagroup.info
*.ww25.arabmediagroup.info
awplproduct.com
*.awplproduct.com
*.autodiscover.binomio.digital
binomio.digital
*.binomio.digital
*.webmail.binomio.digital
*.ww25.binomio.digital
breakwaternewfs.com
*.breakwaternewfs.com
*.ww25.breakwaternewfs.com
*.app.pgbagus1.site
*.autodiscover.pgbagus1.site
*.beta.pgbagus1.site
*.hostmaster.pgbagus1.site
*.mail.pgbagus1.site
pgbagus1.site
*.pgbagus1.site
*.www.pgbagus1.site
vi8g.com
*.vi8g.com
*.walters-face.vi8g.com
*.201-927-5.woosterymca.org
*.214-848-8.woosterymca.org
*.216-385-8.woosterymca.org
*.219-291-3.woosterymca.org
*.229-273-3.woosterymca.org
*.231-276-7.woosterymca.org
*.248-918-8.woosterymca.org
*.253-525-2.woosterymca.org
*.253-883-7.woosterymca.org
*.262-924-6.woosterymca.org
*.267-283-4.woosterymca.org
*.276-682-6.woosterymca.org
*.301-233-7.woosterymca.org
*.305-776-5.woosterymca.org
*.307-417-2.woosterymca.org
*.316-906-3.woosterymca.org
*.320-269-4.woosterymca.org
*.323-794-5.woosterymca.org
*.334-813-8.woosterymca.org
*.346-775-2.woosterymca.org
*.347-312-2.woosterymca.org
*.386-935-6.woosterymca.org
*.405-480-7.woosterymca.org
*.406-603-6.woosterymca.org
*.412-662-8.woosterymca.org
*.413-504-8.woosterymca.org
*.414-536-5.woosterymca.org
*.417-924-4.woosterymca.org
*.419-649-3.woosterymca.org
*.435-221-5.woosterymca.org
*.559-632-3.woosterymca.org
*.575-425-2.woosterymca.org
*.603-235-8.woosterymca.org
*.608-404-4.woosterymca.org
*.626-428-3.woosterymca.org
*.681-239-2.woosterymca.org
*.702-307-8.woosterymca.org
*.707-764-7.woosterymca.org
*.724-873-4.woosterymca.org
*.732-787-2.woosterymca.org
*.770-291-5.woosterymca.org
*.781-435-1.woosterymca.org
*.781-522-5.woosterymca.org
*.805-808-6.woosterymca.org
*.806-882-5.woosterymca.org
*.808-953-2.woosterymca.org
*.832-454-8.woosterymca.org
*.845-629-6.woosterymca.org
*.856-889-1.woosterymca.org
*.857-293-6.woosterymca.org
*.862-308-4.woosterymca.org
*.901-252-2.woosterymca.org
*.909-554-7.woosterymca.org
*.918-833-1.woosterymca.org
*.919-593-8.woosterymca.org
*.954-276-5.woosterymca.org
*.956-336-2.woosterymca.org
*.972-300-5.woosterymca.org
woosterymca.org
*.woosterymca.org
Other domains in certificate