Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=alcateia.click
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 07, 2026
Valid Until
May 08, 2026
78 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
46:FC:08:00:28:51:91:00:7C:F6:FC:2B:1D:6B:F3:78:83:42:B3:EE:D0:E4:10:79:30:44:FE:08:01:F4:E8:D9
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
thetrainlline.com
*.thetrainlline.com
*.business.thetrainlline.com
*.gp.thetrainlline.com
agapk.xyz
*.agapk.xyz
*.ww25.agapk.xyz
alcateia.click
*.alcateia.click
*.lbr.alcateia.click
*.link.alcateia.click
beegs.click
*.beegs.click
*.source-7.beegs.click
*.vpn.beegs.click
bellavibes.store
*.bellavibes.store
bty.au
*.bty.au
*.wildcard.bty.au
*.ww38.bty.au
chinapalacemelbourne.com
*.chinapalacemelbourne.com
*.random.chinapalacemelbourne.com
colegiojosuemanrique.com
*.colegiojosuemanrique.com
glassfencing.au
*.glassfencing.au
haoking.xyz
*.haoking.xyz
*.ww25.haoking.xyz
ifps-sante.com
*.ifps-sante.com
iran-tv.live
*.iran-tv.live
*.ww25.iran-tv.live
*.www.iran-tv.live
monadecosystem.xyz
*.monadecosystem.xyz
*.ww25.monadecosystem.xyz
murpheydoor.com
*.murpheydoor.com
*.consumercenter.mysnchrony.com
mysnchrony.com
*.mysnchrony.com
*.ww25.mysnchrony.com
newworldreading.com
*.newworldreading.com
novfundb.com
*.novfundb.com
*.ww38.novfundb.com
*.all.ravy.com
*.e.ravy.com
*.ns1.ravy.com
*.ns2.ravy.com
ravy.com
*.ravy.com
*.rodriguez-democratic.ravy.com
*.silver.ravy.com
*.account.techblogword.info
*.backup.techblogword.info
*.crm.techblogword.info
techblogword.info
*.techblogword.info
thepizzaconnectionmaui.com
*.thepizzaconnectionmaui.com
*.www.thepizzaconnectionmaui.com
*.connect.thetakeover.com
*.free2.thetakeover.com
*.gateway.thetakeover.com
*.rdp.thetakeover.com
*.rds.thetakeover.com
*.ssl.thetakeover.com
thetakeover.com
*.thetakeover.com
*.webvpn.thetakeover.com
unblockvideos.online
*.unblockvideos.online
*.ww1.unblockvideos.online
*.www.unblockvideos.online
vfsglobak.com
*.vfsglobak.com
*.ww1.vfsglobak.com
*.random.warlmat.com
warlmat.com
*.warlmat.com
*.ww1.warlmat.com
*.m.yes-no.bet
yes-no.bet
*.yes-no.bet
Other domains in certificate