Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=1wnymd.xyz
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 01, 2026
Valid Until
May 02, 2026
78 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
03:67:83:F9:4C:22:76:D5:40:D2:76:BE:16:AE:0D:51:72:75:D2:56:A8:A6:B1:25:52:98:D7:2B:D7:72:8D:D3
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
timesplit.com
*.timesplit.com
*.ww41.timesplit.com
1wnymd.xyz
*.1wnymd.xyz
*.ww25.1wnymd.xyz
*.ww38.1wnymd.xyz
4lookup.com
*.4lookup.com
*.dash.4lookup.com
affinityhealthcare.com
*.affinityhealthcare.com
*.facebook.affinityhealthcare.com
*.ww1.affinityhealthcare.com
almo.studio
*.almo.studio
*.ww25.almo.studio
*.api.armorai.io
armorai.io
*.armorai.io
barnils.com
*.barnils.com
*.client.barnils.com
*.webconnect.barnils.com
canal.net
*.canal.net
*.m.canal.net
convention.au
*.convention.au
*.beta.danangseafood.com
danangseafood.com
*.danangseafood.com
ecojet.com.au
*.ecojet.com.au
fatosrelevantes.me
*.fatosrelevantes.me
*.hombremagnetico.fatosrelevantes.me
jalor.com
*.jalor.com
*.m.jalor.com
jennys.com.au
*.jennys.com.au
jmove.com
*.jmove.com
*.random.jmove.com
*.y.jmove.com
kurdziel.com
*.kurdziel.com
*.webconnect.kurdziel.com
*.demo.m555s.com
*.dev.m555s.com
m555s.com
*.m555s.com
*.mailer.m555s.com
*.vpn.m555s.com
*.wamloehi.m555s.com
mortgageapplyusbank.com
*.mortgageapplyusbank.com
*.ns1.mortgageapplyusbank.com
*.ns2.mortgageapplyusbank.com
*.ns3.mortgageapplyusbank.com
*.1b.mq3.xyz
*.1p.mq3.xyz
*.90eea8c0-f0d1-4010-8e47-b681d92fda6d.mq3.xyz
*.admin.mq3.xyz
mq3.xyz
*.mq3.xyz
*.wildcard.mq3.xyz
*.ww25.mq3.xyz
*.ww38.mq3.xyz
*.api.paymew.com
paymew.com
*.paymew.com
*.admin.pizzapartythailand.com
pizzapartythailand.com
*.pizzapartythailand.com
prefabshowers.net
*.prefabshowers.net
restrainttraining.com
*.restrainttraining.com
*.sitemap.restrainttraining.com
*.ww38.restrainttraining.com
*.comww25.shafattravel.com
shafattravel.com
*.shafattravel.com
sts.au
*.sts.au
tvsehpasi.com
*.tvsehpasi.com
*.ww1.tvsehpasi.com
Other domains in certificate