Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=careersmartgoals.xyz
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 14, 2026
Valid Until
August 12, 2026
69 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
30:D0:31:C5:BC:B3:21:C4:C4:66:39:3C:BA:D0:8A:51:C9:C2:11:C3:A2:D0:4C:76:19:95:FF:C4:52:CB:40:12
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
usedcar.buzz
*.usedcar.buzz
careeroptimizepros.xyz
*.careeroptimizepros.xyz
careersmartgoals.xyz
*.careersmartgoals.xyz
cell-phone-plan-y9.click
*.cell-phone-plan-y9.click
cepywi.pro
*.cepywi.pro
ceyyw.cc
*.ceyyw.cc
cometwice.com
*.cometwice.com
completecompliance.com.au
*.completecompliance.com.au
connectedphone.com
*.connectedphone.com
couratari.com
*.couratari.com
delliahshaffer.com
*.delliahshaffer.com
dubai-stopover-165010461.click
*.dubai-stopover-165010461.click
duko.live
*.duko.live
dunderheadedness.com
*.dunderheadedness.com
duniacash9.xyz
*.duniacash9.xyz
duvabien.com
*.duvabien.com
ebipin.xyz
*.ebipin.xyz
*.uat.ebipin.xyz
ebkfwbz880.vip
*.ebkfwbz880.vip
elegoomatrix.com
*.elegoomatrix.com
excellenttripfinder.com
*.excellenttripfinder.com
ezmonic.com
*.ezmonic.com
sdmutiara37.com
*.sdmutiara37.com
sdvvp202.cc
*.sdvvp202.cc
sealedenvelop.com
*.sealedenvelop.com
security-companies-sp-agent.click
*.security-companies-sp-agent.click
sell-my-984840233.click
*.sell-my-984840233.click
skypov.com
*.skypov.com
southholidays.com
*.southholidays.com
spectaculars-pine.com
*.spectaculars-pine.com
stereolabphuket.com
*.stereolabphuket.com
symbotic.bot
*.symbotic.bot
tinurt.com
*.tinurt.com
tmkmhb.cyou
*.tmkmhb.cyou
w13727389.com
*.w13727389.com
w13727766.com
*.w13727766.com
webgamesarefun.com
*.webgamesarefun.com
xn--55qx5dqwhl63a.com
*.xn--55qx5dqwhl63a.com
xn--i8s2h593epqj.com
*.xn--i8s2h593epqj.com
xn--rhq24f19fvh124ke63a.com
*.xn--rhq24f19fvh124ke63a.com
xx6335.cc
*.xx6335.cc
xx7225.cc
*.xx7225.cc
zhib08.com
*.zhib08.com
zonastoki.com
*.zonastoki.com
zs5103.com
*.zs5103.com
Other domains in certificate