Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=anoojainitiatives.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 29, 2026
Valid Until
April 29, 2026
78 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
EC:E5:59:07:3E:86:2C:CA:30:93:22:26:72:14:F2:1B:4A:40:5F:2B:67:88:EC:AF:F4:55:A9:64:02:FA:69:0D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
xhadult5.com
*.xhadult5.com
*.amp.xhadult5.com
*.zh.xhadult5.com
2023techhq.com
*.2023techhq.com
*.random.2023techhq.com
aibeerfest.com
*.aibeerfest.com
aiguswarranty.net
*.aiguswarranty.net
*.preprod.aiguswarranty.net
*.prod.aiguswarranty.net
americanengagementrings.icu
*.americanengagementrings.icu
anoojainitiatives.com
*.anoojainitiatives.com
californiatotallossclassactionfees.com
*.californiatotallossclassactionfees.com
*.ww25.californiatotallossclassactionfees.com
*.ww38.californiatotallossclassactionfees.com
*.allnorth.chameleoncreative.net
*.bears.chameleoncreative.net
*.brownsbay.chameleoncreative.net
*.camp.chameleoncreative.net
*.campaigns.chameleoncreative.net
chameleoncreative.net
*.chameleoncreative.net
*.crfoodbank.chameleoncreative.net
*.foodbank.chameleoncreative.net
*.kib.chameleoncreative.net
*.mfe.chameleoncreative.net
*.mystic.chameleoncreative.net
*.ph.chameleoncreative.net
*.rh.chameleoncreative.net
*.skye.chameleoncreative.net
*.tlc.chameleoncreative.net
*.tlo.chameleoncreative.net
cuk.com.au
*.cuk.com.au
*.5x92v5aqku4ds5i8.emergencygeneratorsbr.space
*.app.emergencygeneratorsbr.space
emergencygeneratorsbr.space
*.emergencygeneratorsbr.space
gildan.net
*.gildan.net
goaloo899.com
*.goaloo899.com
*.live12.goaloo899.com
intelgrowve.com
*.intelgrowve.com
*.beta.melvinsmechanicalmasterworks.com
melvinsmechanicalmasterworks.com
*.melvinsmechanicalmasterworks.com
naturalne.net
*.naturalne.net
*.sex-telefon.naturalne.net
neko.re
*.neko.re
*.mail.oldgoldbuyers.cc
oldgoldbuyers.cc
*.oldgoldbuyers.cc
*.ww25.oldgoldbuyers.cc
*.art.ouchi-baker.com
*.mta-sts.ouchi-baker.com
ouchi-baker.com
*.ouchi-baker.com
*.blog.promlinkdev.com
promlinkdev.com
*.promlinkdev.com
*.account-verify.regionsonlineconnection.com
*.com.regionsonlineconnection.com
regionsonlineconnection.com
*.regionsonlineconnection.com
*.beta.rummylove.com
*.demo.rummylove.com
*.demos.rummylove.com
*.free.rummylove.com
*.health.rummylove.com
*.home.rummylove.com
*.mssql.rummylove.com
*.openerp.rummylove.com
*.random.rummylove.com
*.rss.rummylove.com
rummylove.com
*.rummylove.com
*.team.rummylove.com
slotsbattler.com
*.slotsbattler.com
Other domains in certificate