Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=mytarget.co
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 13, 2026
Valid Until
August 11, 2026
70 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
66:19:C3:A0:9E:AC:08:50:63:1E:CC:5C:38:51:22:79:E9:5B:AA:1D:A6:5C:F8:E0:24:D9:D2:0E:FD:C8:C1:15
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
boostia.site
*.boostia.site
*.02be5e9a-0822-4e5e-9f81-626678b8b5b7.boostia.site
*.aging.boostia.site
*.api.boostia.site
*.app.boostia.site
*.backup.boostia.site
*.dev.boostia.site
*.test.boostia.site
*.u54sot.boostia.site
*.www.boostia.site
1xiaomai.com
*.1xiaomai.com
*.www.1xiaomai.com
address-selling-869438466.click
*.address-selling-869438466.click
aewrzl.cyou
*.aewrzl.cyou
altathought.com
*.altathought.com
boxingwager.com
*.boxingwager.com
*.getondating.boxingwager.com
*.rd.boxingwager.com
*.rdweb.boxingwager.com
bptf.org
*.bptf.org
*.rdweb.bptf.org
*.www.bptf.org
cleaning-jobs-100030.sbs
*.cleaning-jobs-100030.sbs
cloud-data-services-de-5727.sbs
*.cloud-data-services-de-5727.sbs
cloud-data-services-qa-2814.sbs
*.cloud-data-services-qa-2814.sbs
*.admin.cukongbet.help
cukongbet.help
*.cukongbet.help
*.demo.cukongbet.help
*.rosu0d.cukongbet.help
edicole.com
*.edicole.com
jessebradford.org
*.jessebradford.org
*.iovou.lls01.top
*.kwid9.lls01.top
lls01.top
*.lls01.top
*.cpanel.myperception.it
*.mail.myperception.it
myperception.it
*.myperception.it
*.poc.myperception.it
*.postmaster.myperception.it
*.preprod.myperception.it
*.webdisk.myperception.it
*.webmail.myperception.it
*.www.myperception.it
mytarget.co
*.mytarget.co
niggw.org
*.niggw.org
npp1z6.my
*.npp1z6.my
pestweaker.com
*.pestweaker.com
*.ww12.pestweaker.com
*.pop.pro-fits.com
*.portal.pro-fits.com
pro-fits.com
*.pro-fits.com
*.ww7.pro-fits.com
rtpklix4djoss.shop
*.rtpklix4djoss.shop
*.webmail.rtpklix4djoss.shop
sheisfreaky.com
*.sheisfreaky.com
*.superset.sheisfreaky.com
*.ww16.sheisfreaky.com
*.backup.todosex.shop
*.rustore.todosex.shop
*.tnyzrrustore.todosex.shop
todosex.shop
*.todosex.shop
ujerseyvip.com
*.ujerseyvip.com
xfatazy.com
*.xfatazy.com
yihuigroup.net.cn
*.yihuigroup.net.cn
Other domains in certificate