Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=websiteelevator.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 24, 2026
Valid Until
August 22, 2026
72 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
AC:B9:03:33:AF:35:C5:1C:82:85:27:C7:33:AB:DB:57:0D:4F:5E:DA:F8:28:0A:DD:99:E6:E2:AD:DE:9A:19:52
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
atask.dev
*.atask.dev
*.api.atask.dev
*.app.atask.dev
*.backup.atask.dev
*.bkkwh7.atask.dev
*.dashboard.atask.dev
*.dev.atask.dev
*.foirotest.atask.dev
*.mail.atask.dev
*.mailer.atask.dev
*.marketing.atask.dev
*.members.atask.dev
*.qa.atask.dev
*.secure.atask.dev
*.sitemaps.atask.dev
*.staging.atask.dev
*.stg.atask.dev
*.test.atask.dev
*.uat.atask.dev
*.v1.atask.dev
*.v2.atask.dev
*.web.atask.dev
*.ww12.atask.dev
*.www.atask.dev
*.xbaltsecure.atask.dev
*.xepyidzn.atask.dev
789betvip.bet
*.789betvip.bet
8mag.cc
*.8mag.cc
*.app.8mag.cc
*.backend.8mag.cc
*.panel.8mag.cc
*.ww7.8mag.cc
*.www.8mag.cc
*.b2.biarritz.it
biarritz.it
*.biarritz.it
*.tumour.biarritz.it
*.zhujunhua.biarritz.it
*.8t59a7.deltanext.biz
deltanext.biz
*.deltanext.biz
*.aid.initiative.us
*.base.initiative.us
*.candle.initiative.us
*.ci.initiative.us
*.comparison.initiative.us
*.concept.initiative.us
*.contest.initiative.us
*.contract.initiative.us
*.cost.initiative.us
*.dark.initiative.us
*.due.initiative.us
*.fan.initiative.us
*.fold.initiative.us
*.grandmother.initiative.us
initiative.us
*.initiative.us
*.league.initiative.us
*.manner.initiative.us
*.market.initiative.us
*.match.initiative.us
*.meal.initiative.us
*.option.initiative.us
*.pair.initiative.us
*.patience.initiative.us
*.performance.initiative.us
*.personality.initiative.us
*.pipeline.initiative.us
*.pool.initiative.us
*.random.initiative.us
*.roll.initiative.us
*.she.initiative.us
*.song.initiative.us
*.strength.initiative.us
*.tongue.initiative.us
*.ww25.initiative.us
*.api.websiteelevator.com
*.app.websiteelevator.com
*.members.websiteelevator.com
*.rustore.websiteelevator.com
*.test.websiteelevator.com
websiteelevator.com
*.websiteelevator.com
*.com.ysmteam.xyz
ysmteam.xyz
*.ysmteam.xyz
Other domains in certificate