Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=goitibera.org
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 24, 2026
Valid Until
August 22, 2026
89 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
66:28:CB:82:40:B5:54:0D:DE:2D:A2:D4:9C:2F:75:DB:2F:69:1C:A9:F5:6F:0A:50:CB:E8:98:47:E3:BF:37:09
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
tag.de
*.tag.de
*.a.tag.de
*.anh.tag.de
*.bahnall.tag.de
*.bundes.tag.de
*.fraenkischer.tag.de
*.hi.tag.de
*.kleinreparaturen.tag.de
*.mfa.tag.de
*.reichs.tag.de
*.trau-m.tag.de
*.vo.tag.de
*.welt-aids.tag.de
*.wi.tag.de
*.ww16.tag.de
5gfuko.xyz
*.5gfuko.xyz
*.ww38.5gfuko.xyz
66048.cn
*.66048.cn
*.wildcard.66048.cn
besthoteldubai.com
*.besthoteldubai.com
*.m.besthoteldubai.com
*.wildcard.besthoteldubai.com
*.www.besthoteldubai.com
burritocraft.games
*.burritocraft.games
*.lpa.burritocraft.games
*.m.burritocraft.games
*.32.clicaai.pro
clicaai.pro
*.clicaai.pro
ecadastre-bf.org
*.ecadastre-bf.org
*.gis.ecadastre-bf.org
*.app.f1streams.live
f1streams.live
*.f1streams.live
goitibera.org
*.goitibera.org
*.posta.goitibera.org
*.book.jordanslot.pro
jordanslot.pro
*.jordanslot.pro
k4yho7.cyou
*.k4yho7.cyou
marinde.finance
*.marinde.finance
messi2000.com
*.messi2000.com
*.23329432-160e-4544-8378-cf2695dc3e1a.napgame1s.net
*.2d821ce4-bd67-46bc-beca-1a3107a720fd.napgame1s.net
*.app.napgame1s.net
napgame1s.net
*.napgame1s.net
*.shop.napgame1s.net
*.testing.napgame1s.net
*.www.napgame1s.net
*.xf5cqz.napgame1s.net
*.014w8.nopqss.top
*.6cd9j.nopqss.top
*.96c54.nopqss.top
*.b5hyr.nopqss.top
*.civoh.nopqss.top
*.hgsq5.nopqss.top
*.ip4i2.nopqss.top
*.jxc88.nopqss.top
*.lkzdx.nopqss.top
nopqss.top
*.nopqss.top
*.xbh6h.nopqss.top
*.y04uw.nopqss.top
*.zyu43.nopqss.top
sarkari-portal.com
*.sarkari-portal.com
*.m.semilar.com
semilar.com
*.semilar.com
streetfupoodchto.com
*.streetfupoodchto.com
stremingcommunity.wang
*.stremingcommunity.wang
wjfcom.pl
*.wjfcom.pl
yoomoojar.com
*.yoomoojar.com
ys80066.cc
*.ys80066.cc
Other domains in certificate