Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=maison-sourds.org
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 23, 2026
Valid Until
August 21, 2026
86 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D1:C6:C9:CB:AA:B7:6E:90:5C:D3:AD:41:D8:8C:C0:DF:18:E3:4F:7D:B3:F8:89:62:5A:FC:6C:14:DB:F6:66:65
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
wokcn.com
*.wokcn.com
1175jwm301.top
*.1175jwm301.top
*.93i0ql.1175jwm301.top
*.a1799537ec.1175jwm301.top
*.a19399ab66.1175jwm301.top
akpd.live
*.akpd.live
*.random.akpd.live
*.ww25.akpd.live
*.cpcalendars.dooleymath.com
dooleymath.com
*.dooleymath.com
*.mail.dooleymath.com
*.ww38.dooleymath.com
*.8e674286-ad4a-4a73-ad16-61e83487abd7.gails.cafe
*.admin.gails.cafe
*.api.gails.cafe
*.assets.gails.cafe
*.dev.gails.cafe
gails.cafe
*.gails.cafe
*.jcgabstaging.gails.cafe
gnjvs.gdn
*.gnjvs.gdn
golor5.com
*.golor5.com
gossipgreen.xyz
*.gossipgreen.xyz
gossiphoncho.xyz
*.gossiphoncho.xyz
*.autodiscover.jxdriver.cn
*.fx.jxdriver.cn
jxdriver.cn
*.jxdriver.cn
*.dev.maison-sourds.org
maison-sourds.org
*.maison-sourds.org
mmzb10.my
*.mmzb10.my
*.2eed405c-206c-4283-8ecd-7806967e585b.momentumqubits.chat
*.api.momentumqubits.chat
*.backup.momentumqubits.chat
*.dashboard.momentumqubits.chat
momentumqubits.chat
*.momentumqubits.chat
*.web.momentumqubits.chat
*.dev.product-design-software.sbs
product-design-software.sbs
*.product-design-software.sbs
snaptain.xyz
*.snaptain.xyz
spartanscult.shop
*.spartanscult.shop
*.store.spartanscult.shop
spencerchannelai.com
*.spencerchannelai.com
su231d607swc8.cc
*.su231d607swc8.cc
sugmg.gdn
*.sugmg.gdn
thetrustedtraveller.live
*.thetrustedtraveller.live
trustedfitnessadvantage.club
*.trustedfitnessadvantage.club
vacationplanningpros.live
*.vacationplanningpros.live
vhgco.qpon
*.vhgco.qpon
vina58.net
*.vina58.net
*.f0914eee-7450-45f8-991d-3e9c145025f7.vot3s.xyz
*.m.vot3s.xyz
vot3s.xyz
*.vot3s.xyz
*.www.vot3s.xyz
*.admin.waelitefind.info
*.assets.waelitefind.info
*.backup.waelitefind.info
*.cv09in.waelitefind.info
*.dev.waelitefind.info
*.members.waelitefind.info
*.qggqxapi.waelitefind.info
*.shop.waelitefind.info
waelitefind.info
*.waelitefind.info
*.ztxktassets.waelitefind.info
wcxou.net
*.wcxou.net
Other domains in certificate