Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=xleakedarea.online
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 04, 2026
Valid Until
May 05, 2026
78 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4A:AC:B0:1E:A6:72:BA:64:8E:E1:09:E8:D0:BC:FF:18:EB:39:50:31:90:80:46:16:F8:38:49:F3:D4:39:AD:F2
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
dogliani.com
*.dogliani.com
*.cp.dogliani.com
*.forums.dogliani.com
*.dev.tdk.com.pl
*.mta-sts.tdk.com.pl
*.old.tdk.com.pl
*.proxy.tdk.com.pl
*.staging.tdk.com.pl
tdk.com.pl
*.tdk.com.pl
*.test.tdk.com.pl
*.cdecf9dfc064.coxoc.shop
coxoc.shop
*.coxoc.shop
*.wildcard.coxoc.shop
*.autoconfig.delifooddiary.com
delifooddiary.com
*.delifooddiary.com
extrabet950.com
*.extrabet950.com
*.m.extrabet950.com
*.random.extrabet950.com
*.wildcard.extrabet950.com
*.www.extrabet950.com
*.autoconfig.gemenii.com
*.cloudvpn.gemenii.com
gemenii.com
*.gemenii.com
*.ww25.gemenii.com
gssy.com
*.gssy.com
*.mm.gssy.com
*.rdweb.gssy.com
mabar69-max.com
*.mabar69-max.com
*.test.mabar69-max.com
makefield.com
*.makefield.com
*.prueba.makefield.com
*.51720694.newssolution.co.uk
*.90108636.newssolution.co.uk
*.95534551.newssolution.co.uk
*.968929301951385985273.newssolution.co.uk
*.aiayxguo.newssolution.co.uk
newssolution.co.uk
*.newssolution.co.uk
peranakan.com
*.peranakan.com
*.ww16.peranakan.com
pubinglese.com
*.pubinglese.com
*.redash.pubinglese.com
rawia.com
*.rawia.com
*.ww38.rawia.com
*.blog.receptores.com
*.dw.receptores.com
*.echivww25.receptores.com
*.hostmaster.receptores.com
*.m.receptores.com
*.mega.receptores.com
receptores.com
*.receptores.com
*.remote.receptores.com
*.vpn.receptores.com
*.website.receptores.com
*.wildcard.receptores.com
*.ww16.receptores.com
*.ww25.receptores.com
*.api.shellacnails.com
shellacnails.com
*.shellacnails.com
*.relay.smolko.com
smolko.com
*.smolko.com
*.smtp.smolko.com
*.cnfr9.sqlnatflwz.xyz
*.ebwif.sqlnatflwz.xyz
sqlnatflwz.xyz
*.sqlnatflwz.xyz
*.mx.talopalvelu.com
talopalvelu.com
*.talopalvelu.com
xleakedarea.online
*.xleakedarea.online
*.fxz.youandme.me
*.thi.youandme.me
youandme.me
*.youandme.me
Other domains in certificate