Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=21955.co
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 29, 2026
Valid Until
July 28, 2026
77 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
11:C8:E1:7F:12:97:93:A3:CF:C5:DD:CA:24:4C:DA:9C:CB:2D:C2:D3:1E:06:C8:F2:70:85:27:15:BB:B8:F0:61
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
ossining.net
*.ossining.net
21955.co
*.21955.co
2222909adh2.sbs
*.2222909adh2.sbs
39686.co
*.39686.co
454074.my
*.454074.my
45951.my
*.45951.my
50792.cc
*.50792.cc
8h-8h-y290y.sbs
*.8h-8h-y290y.sbs
awesome-pathloop.quest
*.awesome-pathloop.quest
awesome-sparkzen.quest
*.awesome-sparkzen.quest
b2bcomunicazionedigitale.info
*.b2bcomunicazionedigitale.info
b36q.icu
*.b36q.icu
balloon-decoration-th-d1.click
*.balloon-decoration-th-d1.click
bambumanis.info
*.bambumanis.info
be8uvb.cyou
*.be8uvb.cyou
bigcirclejewelry.com
*.bigcirclejewelry.com
brightventures.site
*.brightventures.site
hbogan.com
*.hbogan.com
heji579.com
*.heji579.com
henbj.loans
*.henbj.loans
it-courses-in3141.sbs
*.it-courses-in3141.sbs
kingremovals.com
*.kingremovals.com
likego.xyz
*.likego.xyz
lloeenprhecyt.onl
*.lloeenprhecyt.onl
lnolan.com
*.lnolan.com
localizameupedido.info
*.localizameupedido.info
modernpowers.info
*.modernpowers.info
mpaayusalaiask.info
*.mpaayusalaiask.info
msjunkfood.com
*.msjunkfood.com
numismatics.in
*.numismatics.in
office-cleaning.sbs
*.office-cleaning.sbs
onealerce.com
*.onealerce.com
online-degrees-seek-now.today
*.online-degrees-seek-now.today
openpathways.site
*.openpathways.site
padeline.com
*.padeline.com
pixelchampion916.info
*.pixelchampion916.info
pleaselease.com
*.pleaselease.com
pressurewasher-brz.sbs
*.pressurewasher-brz.sbs
primecircle.sbs
*.primecircle.sbs
primevacationessence.live
*.primevacationessence.live
professionaltravelroutes.live
*.professionaltravelroutes.live
promedtheory.com
*.promedtheory.com
queencharity.com
*.queencharity.com
*.a.uzdjc.bargains
uzdjc.bargains
*.uzdjc.bargains
Other domains in certificate