Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=capocrusaders.com
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
May 28, 2026
Valid Until
August 26, 2026
66 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7A:EC:FC:84:47:D3:78:D5:9D:62:4D:89:1B:D4:20:83:E0:EE:02:8E:46:D7:A9:80:D2:E7:32:60:EC:16:85:34
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
tmgcycle.com
*.tmgcycle.com
capocrusaders.com
*.capocrusaders.com
*.cloud.capocrusaders.com
*.m.capocrusaders.com
*.rds.capocrusaders.com
cocan.org
*.cocan.org
daquan999.cc
*.daquan999.cc
*.c9095d83-f6d0-49bb-8e87-a3ff74db83cc.drhvacsystems.com
drhvacsystems.com
*.drhvacsystems.com
electromatic.co
*.electromatic.co
*.sitemap.electromatic.co
*.sitemaps.electromatic.co
enx.it
*.enx.it
explorechiangmaitravel.com
*.explorechiangmaitravel.com
*.extranet.finisaje.com
finisaje.com
*.finisaje.com
*.ildcard.finisaje.com
*.intra.finisaje.com
*.preview.finisaje.com
*.a.jckxq.bargains
jckxq.bargains
*.jckxq.bargains
*.api.jimmiebishop.com
*.app.jimmiebishop.com
*.backend.jimmiebishop.com
*.dev.jimmiebishop.com
*.hostmaster.jimmiebishop.com
jimmiebishop.com
*.jimmiebishop.com
*.notexistssitemaps.jimmiebishop.com
*.sitemap.jimmiebishop.com
*.sitemaps.jimmiebishop.com
*.www.jimmiebishop.com
*.dd5b2c1d-c703-490d-a39f-591ac7d748d5.js8810.vip
*.hjfwme.js8810.vip
js8810.vip
*.js8810.vip
*.24837123-f77b-4781-ba54-f2528802b778.madeonmarsart.art
*.6617f4f6-d050-4630-8772-e35dd8b98f4c.madeonmarsart.art
*.dev.madeonmarsart.art
madeonmarsart.art
*.madeonmarsart.art
*.www.madeonmarsart.art
*.3824158f-84ee-4d67-8989-d5b7c25d36da.mb66a5.vip
*.949fa3cd-6e04-412a-b4b0-29f10bf1c11f.mb66a5.vip
*.admin.mb66a5.vip
*.api.mb66a5.vip
*.app.mb66a5.vip
*.assets.mb66a5.vip
*.cb2ea769-508b-4ce2-9429-55b7a16cc083.mb66a5.vip
*.demo.mb66a5.vip
*.dev.mb66a5.vip
*.ga5x5d.mb66a5.vip
*.jtaftassets.mb66a5.vip
*.mail.mb66a5.vip
mb66a5.vip
*.mb66a5.vip
*.members.mb66a5.vip
*.pcveeadmin.mb66a5.vip
*.shop.mb66a5.vip
*.test.mb66a5.vip
*.vip.mb66a5.vip
*.www.mb66a5.vip
petters.it
*.petters.it
qinetiq.io
*.qinetiq.io
*.v3.qinetiq.io
shenme.app
*.shenme.app
testimonial.com.au
*.testimonial.com.au
*.ww25.testimonial.com.au
*.secure.tesys.co
tesys.co
*.tesys.co
*.4nff2o.wakeboardtrainer.com
*.vraul.wakeboardtrainer.com
wakeboardtrainer.com
*.wakeboardtrainer.com
Other domains in certificate