Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=glamhance.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 05, 2026
Valid Until
August 03, 2026
82 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
DA:B4:C9:EB:45:E9:F0:73:83:0B:17:C8:4E:82:1A:40:2B:98:08:86:C2:85:A1:67:0A:AB:C3:21:37:A0:83:BF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
tnstars529program.com
*.tnstars529program.com
*.secure.tnstars529program.com
beijing-express-san-antonio.com
*.beijing-express-san-antonio.com
*.ww25.beijing-express-san-antonio.com
brustbein.de
*.brustbein.de
*.ww38.brustbein.de
cailzb.software
*.cailzb.software
*.s.cailzb.software
*.api.deliverviews.com
*.cloud.deliverviews.com
deliverviews.com
*.deliverviews.com
*.mryblvpn.deliverviews.com
*.rdweb.deliverviews.com
*.remote.deliverviews.com
*.store.deliverviews.com
*.www.deliverviews.com
*.auth.downloadsgratis.org
*.box.downloadsgratis.org
*.comune.downloadsgratis.org
downloadsgratis.org
*.downloadsgratis.org
*.mx02.downloadsgratis.org
*.rds.downloadsgratis.org
*.www.downloadsgratis.org
gktorrent.eu
*.gktorrent.eu
glamhance.com
*.glamhance.com
*.api.goutdoorsoklahoma.com
goutdoorsoklahoma.com
*.goutdoorsoklahoma.com
*.license.goutdoorsoklahoma.com
*.notexistsapi.goutdoorsoklahoma.com
*.www.goutdoorsoklahoma.com
h2o2oxytech.com
*.h2o2oxytech.com
herbalultra.com
*.herbalultra.com
kentuckyreentry.org
*.kentuckyreentry.org
lashuncollection.com
*.lashuncollection.com
mubaongoc.com
*.mubaongoc.com
*.www.mubaongoc.com
*.cgpgr.orasa.com
orasa.com
*.orasa.com
*.m.originalbluepill.net
originalbluepill.net
*.originalbluepill.net
partyyalla.com
*.partyyalla.com
*.mc.polskimapping.pl
polskimapping.pl
*.polskimapping.pl
*.wiki.polskimapping.pl
*.batch-reporting.qqq.bio
*.dryrun.qqq.bio
*.exbi-external.qqq.bio
*.insight.qqq.bio
*.micro.qqq.bio
qqq.bio
*.qqq.bio
*.sup.qqq.bio
*.superset2.qqq.bio
*.trends.qqq.bio
sexizpix.com
*.sexizpix.com
*.ww01.sexizpix.com
*.ww1.sexizpix.com
*.recast-explode.shortnest.net
shortnest.net
*.shortnest.net
*.sitemaps.shortnest.net
signaturebuildingtn.com
*.signaturebuildingtn.com
*.sitemap.signaturebuildingtn.com
*.webmail.signaturebuildingtn.com
*.www.signaturebuildingtn.com
*.play.splashbrowins.vip
splashbrowins.vip
*.splashbrowins.vip
westplan.com.au
*.westplan.com.au
Other domains in certificate