Open
Cached
·
just now
91/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=fistim.xyz
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
January 04, 2026
Valid Until
April 04, 2026
48 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
66:F7:D3:26:B8:F1:9B:FC:78:21:D3:29:36:7B:3E:7F:E5:DC:6D:74:50:DB:AF:84:EF:54:7B:B2:D6:C8:E0:3F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Excellent
max-age=31536000; includeSubDomains; preload
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Excellent
DENY
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin
Permissions-Policy
Present
geolocation=(),midi=(),sync-xhr=(),microphone=(),camera=(),magnetometer=(),gyroscope=(),fullscreen=(self),payment=()
Recommendations
- • Add Content-Security-Policy header to prevent XSS attacks
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
max1.site
*.max1.site
*.alifercentral.max1.site
*.aplicativos.max1.site
*.channelplay.max1.site
*.fortune5.max1.site
*.gestor315.max1.site
*.gtpro.max1.site
*.ibo.max1.site
*.ibo4k.max1.site
*.iboazul.max1.site
*.leo.max1.site
*.loja.max1.site
*.loja789.max1.site
*.lojaoficial.max1.site
*.lojateste.max1.site
*.lojateste45.max1.site
*.megacrownoficial.max1.site
*.mytv.max1.site
*.p2p.max1.site
*.ultra.max1.site
*.ultraonev1.max1.site
*.vu.max1.site
*.vuplayer.max1.site
*.xc802.max1.site
*.3g.acupoftea.me
acupoftea.me
*.acupoftea.me
*.ww25.acupoftea.me
escaneado.com
*.escaneado.com
*.hostmaster.escaneado.com
*.mx.escaneado.com
*.ww38.escaneado.com
*.www.escaneado.com
f-link.me
*.f-link.me
*.ww25.f-link.me
fistim.xyz
*.fistim.xyz
*.ww25.fistim.xyz
kostabiyoga.com
*.kostabiyoga.com
*.ww38.kostabiyoga.com
*.1e.m66.pro
m66.pro
*.m66.pro
*.portal.m66.pro
*.accounts.minion8.xyz
*.admin.minion8.xyz
*.api.minion8.xyz
*.app.minion8.xyz
*.d.minion8.xyz
*.demo.minion8.xyz
*.dev.minion8.xyz
*.m.minion8.xyz
minion8.xyz
*.minion8.xyz
*.remote.minion8.xyz
*.sitemap.minion8.xyz
*.sitemaps.minion8.xyz
*.superset.minion8.xyz
*.ww25.minion8.xyz
*.www.minion8.xyz
*.demo.my-tuo.com
*.duchang.my-tuo.com
*.fibred-wound.my-tuo.com
*.guangling.my-tuo.com
*.guyuan.my-tuo.com
*.huaian.my-tuo.com
*.its-mail-global.my-tuo.com
*.jinzhou.my-tuo.com
*.mip.my-tuo.com
my-tuo.com
*.my-tuo.com
*.nierong.my-tuo.com
*.pangxi.my-tuo.com
*.plentiful.my-tuo.com
*.ra.my-tuo.com
*.vpn-portal.my-tuo.com
*.wap.my-tuo.com
*.webapps.my-tuo.com
*.ww12.my-tuo.com
*.yinzhen.my-tuo.com
*.yongshou.my-tuo.com
*.zamid1-gp.my-tuo.com
*.skill.technomw.com
technomw.com
*.technomw.com
Other domains in certificate