Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=bitmakers.store
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
June 19, 2026
Valid Until
September 17, 2026
83 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4C:13:AF:22:F9:F9:63:F6:D7:5A:AE:18:41:A8:BA:0D:2B:BE:57:C8:AD:1E:0F:9D:34:05:D9:37:0E:1E:AB:4F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
termagent.com
*.termagent.com
*.ww38.termagent.com
89267.my
*.89267.my
*.6s98n.98derpt.top
98derpt.top
*.98derpt.top
*.cuyk.98derpt.top
*.g89kw.98derpt.top
*.kac0t.98derpt.top
*.l2aa8.98derpt.top
*.lbcp6.98derpt.top
*.qk6fu.98derpt.top
*.rczhl.98derpt.top
*.wsct4.98derpt.top
aa011.vip
*.aa011.vip
accounting-uk4tc.click
*.accounting-uk4tc.click
africandiamondcouncil.org
*.africandiamondcouncil.org
*.16.aida-model.net
aida-model.net
*.aida-model.net
*.ww38.aida-model.net
*.anyconnect.belowx.com
belowx.com
*.belowx.com
bicycle247.com
*.bicycle247.com
*.demo.bicycle247.com
bitmakers.store
*.bitmakers.store
*.ww25.bitmakers.store
careermappros.xyz
*.careermappros.xyz
caw2002tca.ca
*.caw2002tca.ca
*.mail.caw2002tca.ca
*.ww38.caw2002tca.ca
cy94.xyz
*.cy94.xyz
*.kwid9.cy94.xyz
*.cn9ve1k9k80mekfkn3tg.datingwebsites.com.au
datingwebsites.com.au
*.datingwebsites.com.au
*.email.datingwebsites.com.au
*.fqiyeqnr.datingwebsites.com.au
*.imap1.datingwebsites.com.au
*.mail.datingwebsites.com.au
*.mailgw.datingwebsites.com.au
*.mx1.datingwebsites.com.au
*.new.datingwebsites.com.au
*.random.datingwebsites.com.au
*.smtp2.datingwebsites.com.au
*.spqybijx.datingwebsites.com.au
*.test.datingwebsites.com.au
*.webmail.datingwebsites.com.au
*.ww25.datingwebsites.com.au
*.ylquvpec.datingwebsites.com.au
furkanlarinsaat.com
*.furkanlarinsaat.com
*.ww25.furkanlarinsaat.com
*.ww38.furkanlarinsaat.com
qrsuvw.top
*.qrsuvw.top
reliablejourney.live
*.reliablejourney.live
screwless-dental-implants.sbs
*.screwless-dental-implants.sbs
*.mail.seasonbags.in
*.master-7rqtwti-3o4vkycpcontacts.seasonbags.in
seasonbags.in
*.seasonbags.in
*.webdisk.seasonbags.in
*.webmail.seasonbags.in
*.www.seasonbags.in
skypilot.au
*.skypilot.au
*.ww38.skypilot.au
surgaenak.top
*.surgaenak.top
*.mx0.youngturksbarbers.com.au
*.smtps.youngturksbarbers.com.au
youngturksbarbers.com.au
*.youngturksbarbers.com.au
yourweddingadvisors.beauty
*.yourweddingadvisors.beauty
Other domains in certificate