Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=pornmd.co
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 31, 2026
Valid Until
May 01, 2026
69 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CB:E3:DB:98:64:07:19:B0:93:C2:AF:A4:14:B6:A3:02:46:AC:11:C2:5C:F4:8D:D0:00:FD:AC:C8:E2:F1:71:2D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
wallings.com
*.wallings.com
*.apps.wallings.com
*.2.aniflix.tv
aniflix.tv
*.aniflix.tv
*.aniflixx.aniflix.tv
*.app.aniflix.tv
*.cicd.aniflix.tv
*.mail.aniflix.tv
*.manga.aniflix.tv
*.status.aniflix.tv
*.video.aniflix.tv
*.ww16.aniflix.tv
*.www1.aniflix.tv
*.www2.aniflix.tv
*.www3.aniflix.tv
*.www8.aniflix.tv
*.beta.checkverify.net
checkverify.net
*.checkverify.net
*.ci.checkverify.net
*.cicd.checkverify.net
*.hotfix.checkverify.net
*.integration.checkverify.net
*.ipe.checkverify.net
*.jenkins.checkverify.net
*.mx2.checkverify.net
*.pipeline.checkverify.net
*.poc.checkverify.net
*.preview.checkverify.net
*.smtpseguro.checkverify.net
*.uat.checkverify.net
*.wildcard.checkverify.net
*.ww38.checkverify.net
ckh.com.pl
*.ckh.com.pl
*.mail.ckh.com.pl
*.bstrp.exsposed.com
exsposed.com
*.exsposed.com
*.hostmaster.exsposed.com
*.stlouis.exsposed.com
*.ww2322.exsposed.com
gmailapp.com
*.gmailapp.com
gulffleurs.online
*.gulffleurs.online
*.mail.gulffleurs.online
healthnutri.website
*.healthnutri.website
hydrogeologistswithoutborders.org
*.hydrogeologistswithoutborders.org
isch.com
*.isch.com
*.sman1serangbaru.isch.com
*.hut65.kjri-la.net
kjri-la.net
*.kjri-la.net
*.webmail.kjri-la.net
*.ww38.kjri-la.net
ladybag.com
*.ladybag.com
*.levenger.ladybag.com
*.miraculous.ladybag.com
*.random.ladybag.com
*.ww25.ladybag.com
lnfo-suivi.com
*.lnfo-suivi.com
*.ww25.lnfo-suivi.com
oatalhodigital.com.br
*.oatalhodigital.com.br
pornmd.co
*.pornmd.co
*.h5.ry4tg.com
ry4tg.com
*.ry4tg.com
schilddruesenantikoerper.de
*.schilddruesenantikoerper.de
*.cv.thangtv.net
*.git.thangtv.net
*.mail.thangtv.net
*.sanpham.thangtv.net
thangtv.net
*.thangtv.net
*.ww25.thangtv.net
*.mail02.transunnion.com
*.service.transunnion.com
transunnion.com
*.transunnion.com
Other domains in certificate