Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=doorsopendc.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 01, 2026
Valid Until
July 30, 2026
58 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A0:BB:58:64:A3:E4:88:1E:49:5F:A2:83:EB:DE:59:30:20:05:08:9D:95:1F:8D:37:6B:7D:B2:B0:5D:73:3C:71
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
tocket.io
*.tocket.io
*.oldbutgold.tocket.io
*.soundspower.tocket.io
*.studenta.tocket.io
borodavki.info
*.borodavki.info
*.d9bacdb3-b054-4a23-9e9c-29718a47bddc.borodavki.info
*.m.borodavki.info
*.wildcard.borodavki.info
*.www.borodavki.info
*.yqzyx.borodavki.info
break.au
*.break.au
*.mko.break.au
*.perfect.break.au
*.1.dietrichmetalframing.com
dietrichmetalframing.com
*.dietrichmetalframing.com
*.dlab.dietrichmetalframing.com
*.ww11.dietrichmetalframing.com
*.ww17.dietrichmetalframing.com
*.ww25.dietrichmetalframing.com
*.ww38.dietrichmetalframing.com
*.www.dietrichmetalframing.com
*.867bbe2b-790f-4ba8-aa34-6a7b6686d631.doorsopendc.com
*.94b0ac12-b421-4d76-850c-4be202579878.doorsopendc.com
*.a.doorsopendc.com
*.admin.doorsopendc.com
*.api.doorsopendc.com
*.app.doorsopendc.com
*.assets.doorsopendc.com
*.demo.doorsopendc.com
*.dev.doorsopendc.com
doorsopendc.com
*.doorsopendc.com
*.members.doorsopendc.com
*.rds.doorsopendc.com
*.rdweb.doorsopendc.com
*.remote.doorsopendc.com
*.scoldapp.doorsopendc.com
*.shop.doorsopendc.com
*.test.doorsopendc.com
*.xousha.doorsopendc.com
iminent.co
*.iminent.co
*.ww38.iminent.co
*.a.jojo1023.com
*.cpcontacts.jojo1023.com
jojo1023.com
*.jojo1023.com
*.m.jojo1023.com
*.webmail.jojo1023.com
mangascans.org
*.mangascans.org
*.ww38.mangascans.org
neemomart.com
*.neemomart.com
*.api.saludweb.com
*.app.saludweb.com
*.assets.saludweb.com
*.desktop.saludweb.com
*.m.saludweb.com
*.portal.saludweb.com
*.ra.saludweb.com
*.rdp.saludweb.com
*.rds.saludweb.com
*.remoto.saludweb.com
saludweb.com
*.saludweb.com
*.sitemaps.saludweb.com
*.ssl.saludweb.com
*.sslvpn.saludweb.com
*.ts.saludweb.com
*.vdi.saludweb.com
*.vpn.saludweb.com
*.vpn1.saludweb.com
*.vpnssl.saludweb.com
*.ww16.saludweb.com
*.ww17.saludweb.com
*.ww25.saludweb.com
*.api.tii-world.church
*.dev.tii-world.church
*.members.tii-world.church
*.test.tii-world.church
tii-world.church
*.tii-world.church
*.ns3.winstar.net
winstar.net
*.winstar.net
Other domains in certificate