Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=vipforza88.shop
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 15, 2026
Valid Until
August 13, 2026
89 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
13:06:65:13:ED:93:35:7A:F1:27:83:36:D3:AB:EF:9E:3E:D1:D2:F4:45:8A:56:ED:D5:2A:DB:8F:B7:37:E4:02
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
boxa.us
*.boxa.us
*.650241c0-1f7e-41cb-98f4-9fdab18cc3d7.boxa.us
*.admin.boxa.us
*.c.boxa.us
*.cn.boxa.us
*.cpanel.boxa.us
*.de.boxa.us
*.dev.boxa.us
*.eb9cf9cd-d48a-41a6-bd9b-95cd3facd8a7.boxa.us
*.en.boxa.us
*.fr.boxa.us
*.ftp.boxa.us
*.it.boxa.us
*.jmewxpop.boxa.us
*.localhost.boxa.us
*.mail.boxa.us
*.pop.boxa.us
*.smtp.boxa.us
*.test.boxa.us
*.vvv.boxa.us
*.webdisk.boxa.us
*.webmail.boxa.us
*.whm.boxa.us
*.wow.boxa.us
*.ww.boxa.us
*.wwe.boxa.us
*.www.boxa.us
bizcredithq.com
*.bizcredithq.com
*.cloud.bizcredithq.com
*.hostmaster.bizcredithq.com
*.m.bizcredithq.com
*.rds.bizcredithq.com
*.rdweb.bizcredithq.com
*.www.bizcredithq.com
crownedlaurel.com
*.crownedlaurel.com
*.www.crownedlaurel.com
*.app.dds16.cn
dds16.cn
*.dds16.cn
dilogrenecegim.com
*.dilogrenecegim.com
firstremoval.com
*.firstremoval.com
*.m.firstremoval.com
localgreens.org
*.localgreens.org
*.wildcard.localgreens.org
*.cloud.memecoindevs.com
*.m.memecoindevs.com
memecoindevs.com
*.memecoindevs.com
*.rd.memecoindevs.com
*.remote.memecoindevs.com
*.www.memecoindevs.com
ninaporn.com
*.ninaporn.com
*.ns1.ninaporn.com
*.ww25.ninaporn.com
*.new.pactpay.com
pactpay.com
*.pactpay.com
*.secure.pactpay.com
purdue.vip
*.purdue.vip
ram.cm
*.ram.cm
*.seeri.ram.cm
*.shree.ram.cm
*.viennabeert.ram.cm
*.ww38.ram.cm
riskprofiler.xyz
*.riskprofiler.xyz
*.ww38.riskprofiler.xyz
save-as-dance.org
*.save-as-dance.org
*.random.speedrun.au
speedrun.au
*.speedrun.au
*.32.vipforza88.shop
*.rtp.vipforza88.shop
vipforza88.shop
*.vipforza88.shop
*.mail.wearenana.com
wearenana.com
*.wearenana.com
xn--molitorsmhle-llb.de
*.xn--molitorsmhle-llb.de
Other domains in certificate