Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=stitichsport.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 20, 2026
Valid Until
July 19, 2026
89 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8C:5D:E7:AF:54:63:07:55:9C:27:EE:D9:EE:D8:04:AF:91:B7:E4:01:EF:6E:93:F9:99:34:7B:7D:5B:34:AB:58
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
gxfusion.store
*.gxfusion.store
*.cp.gxfusion.store
*.cpanel.gxfusion.store
*.webmail.gxfusion.store
bahamas.au
*.bahamas.au
capestore.eu
*.capestore.eu
chambres-hotes-gerardmer.com
*.chambres-hotes-gerardmer.com
*.nouveau2019.chambres-hotes-gerardmer.com
*.random.chambres-hotes-gerardmer.com
costslawyers.au
*.costslawyers.au
dealdazzle.site
*.dealdazzle.site
eumrah.com
*.eumrah.com
*.hostmaster.eumrah.com
*.ww16.eumrah.com
*.www.eumrah.com
istantdomain.com
*.istantdomain.com
*.com.keyesville.com
keyesville.com
*.keyesville.com
*.ww16.keyesville.com
*.beta.mozmar.com
*.blog.mozmar.com
mozmar.com
*.mozmar.com
*.rustore.mozmar.com
*.ww25.mozmar.com
*.www.mozmar.com
nimzcollections.com
*.nimzcollections.com
*.ww25.nimzcollections.com
*.ww38.nimzcollections.com
orthotic.au
*.orthotic.au
pierreaugustinrose.co
*.pierreaugustinrose.co
ramona.pink
*.ramona.pink
reaped1.online
*.reaped1.online
rich-dad.cc
*.rich-dad.cc
scarletxp.site
*.scarletxp.site
*.admin.secretbeneits.com
secretbeneits.com
*.secretbeneits.com
*.ww25.secretbeneits.com
senators.au
*.senators.au
sniegas.com
*.sniegas.com
*.ww.sniegas.com
southalltravels.co.uk
*.southalltravels.co.uk
*.ww17.southalltravels.co.uk
*.ww38.southalltravels.co.uk
stitichsport.com
*.stitichsport.com
tonight.au
*.tonight.au
*.hostmaster.vallhonrat.com
vallhonrat.com
*.vallhonrat.com
villalbaonlinepr.com
*.villalbaonlinepr.com
*.hostmaster.vixart.com
*.random.vixart.com
*.rustore.vixart.com
*.sitemap.vixart.com
*.sitemaps.vixart.com
vixart.com
*.vixart.com
*.vpn.vixart.com
*.ww16.vixart.com
*.ww17.vixart.com
*.ww25.vixart.com
*.ww38.vixart.com
*.ww41.vixart.com
wellintonpaymentcenter.com
*.wellintonpaymentcenter.com
zncreallysucks.site
*.zncreallysucks.site
Other domains in certificate