Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=analoyalaquariumgh.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 20, 2026
Valid Until
August 18, 2026
64 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3B:8D:09:7D:BF:A8:3C:04:01:6C:22:17:21:2F:AA:99:72:3F:69:61:A6:41:12:B7:16:E0:2A:E8:3A:B8:6D:3D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
videoautomations.com
*.videoautomations.com
analoyalaquariumgh.com
*.analoyalaquariumgh.com
antidysuric.com
*.antidysuric.com
bbq2.skin
*.bbq2.skin
changeforgood.xyz
*.changeforgood.xyz
dignifieddestiny.xyz
*.dignifieddestiny.xyz
iqtelemedicine.com
*.iqtelemedicine.com
kapal77.blog
*.kapal77.blog
kapriss.shop
*.kapriss.shop
kathkutir.com
*.kathkutir.com
krmaxtv104.com
*.krmaxtv104.com
laclinic.co
*.laclinic.co
laptopgence.com
*.laptopgence.com
ligabola365.blog
*.ligabola365.blog
lightingigence.com
*.lightingigence.com
ljo77.blog
*.ljo77.blog
magavts.com
*.magavts.com
mapigence.com
*.mapigence.com
medilifehostpital.com
*.medilifehostpital.com
melbourne-adelaide-rail-vacation-packages.sbs
*.melbourne-adelaide-rail-vacation-packages.sbs
mobility-scooter-20.today
*.mobility-scooter-20.today
mymortgagebrokers.com.au
*.mymortgagebrokers.com.au
naughshark.com
*.naughshark.com
nickvalentino.xyz
*.nickvalentino.xyz
perksapply.co
*.perksapply.co
swipegence.com
*.swipegence.com
tvoidiplom-xxyqoic.top
*.tvoidiplom-xxyqoic.top
victorysport.net
*.victorysport.net
voteforthedemocrat.org
*.voteforthedemocrat.org
voyeur.lol
*.voyeur.lol
weddingglamourelite.beauty
*.weddingglamourelite.beauty
x99a2209.xyz
*.x99a2209.xyz
xn--37qs01a3vl.com
*.xn--37qs01a3vl.com
xn--49sq26fclp.com
*.xn--49sq26fclp.com
xn--4bvu60b.com
*.xn--4bvu60b.com
xn--4rr99v6s8a4gl.com
*.xn--4rr99v6s8a4gl.com
xn--5nqz7q5o3c.com
*.xn--5nqz7q5o3c.com
xn--azartsples-olb.net
*.xn--azartsples-olb.net
xn--czrq97jsmcrph.com
*.xn--czrq97jsmcrph.com
xn--oru31xkxydml.com
*.xn--oru31xkxydml.com
xn--rgvy09ackb.com
*.xn--rgvy09ackb.com
yilgviza.com
*.yilgviza.com
youbuywegive.com
*.youbuywegive.com
yourselfirts.co
*.yourselfirts.co
ywn7.online
*.ywn7.online
Other domains in certificate