Open
Cached
·
just now
79/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=ecp-co.net
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 24, 2026
Valid Until
May 25, 2026
88 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
46:2A:AB:2D:E3:27:1D:D4:C9:A7:05:A5:73:58:25:15:E7:78:38:98:A3:14:2B:5A:43:F3:84:1B:10:D6:B3:D1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
worldbusk.org
*.worldbusk.org
fivestargranites.co.zw
*.fivestargranites.co.zw
ecp-co.net
*.ecp-co.net
en-us-tonicgreens.us
*.en-us-tonicgreens.us
everflix.xyz
*.everflix.xyz
floorheating129949.icu
*.floorheating129949.icu
frolicsomefun.com
*.frolicsomefun.com
gam-lacote.ch
*.gam-lacote.ch
gourmenttrading.net
*.gourmenttrading.net
heavyporn.xyz
*.heavyporn.xyz
heiliao904.pro
*.heiliao904.pro
heiliao919.pro
*.heiliao919.pro
francecasino-forest.it.com
*.francecasino-forest.it.com
plethoramarketing.com
*.plethoramarketing.com
pricelessplus.com
*.pricelessplus.com
pulesmp.net
*.pulesmp.net
qawsed.tips
*.qawsed.tips
qrifmo.tips
*.qrifmo.tips
qxahqjgwebeyko.net
*.qxahqjgwebeyko.net
rahimasmodesty.com
*.rahimasmodesty.com
replicas.io
*.replicas.io
romwe.me
*.romwe.me
roofcleaning137483.icu
*.roofcleaning137483.icu
sportsbookplatform.com
*.sportsbookplatform.com
superconcordestudio.com
*.superconcordestudio.com
tagfilms.com
*.tagfilms.com
talk-auto.com
*.talk-auto.com
testplesk.sbs
*.testplesk.sbs
thecocooncompany.com
*.thecocooncompany.com
trp35.com
*.trp35.com
tuvwx.tips
*.tuvwx.tips
ujygniofvnu.net
*.ujygniofvnu.net
vegamovies2.biz
*.vegamovies2.biz
via2.co
*.via2.co
viper.design
*.viper.design
visit-dallas.com
*.visit-dallas.com
w13721439.com
*.w13721439.com
wdshlntg.net
*.wdshlntg.net
within3email.com
*.within3email.com
worthguybeartops.net
*.worthguybeartops.net
wowgo.live
*.wowgo.live
xpj9824.cc
*.xpj9824.cc
xrdcr.gdn
*.xrdcr.gdn
zerkalo-leonbets-j8f5.xyz
*.zerkalo-leonbets-j8f5.xyz
zllxxu.gold
*.zllxxu.gold
Other domains in certificate