Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=wishshirts.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 22, 2026
Valid Until
July 21, 2026
66 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
18:AA:26:A4:E8:0D:9E:F3:C9:03:E9:DF:77:73:E4:27:D3:38:93:EB:C5:54:4F:1D:F9:CB:34:C3:2A:6E:1C:7A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
wishshirts.com
*.wishshirts.com
*.77f6f78b-1491-46cb-9700-bf200a29699a.wishshirts.com
*.app.wishshirts.com
*.bjhecmpf.wishshirts.com
*.files.wishshirts.com
*.gateway.wishshirts.com
*.go.wishshirts.com
*.info.wishshirts.com
*.mx01.wishshirts.com
*.new.wishshirts.com
*.plqdrserver1.wishshirts.com
*.secure.wishshirts.com
*.server1.wishshirts.com
*.v2.wishshirts.com
*.vpn.wishshirts.com
*.wp.wishshirts.com
*.ww16.wishshirts.com
*.ww17.wishshirts.com
*.xozuksmtpauth.wishshirts.com
*.access.okuki.com
*.admin.okuki.com
*.anyconnect.okuki.com
*.anywhere.okuki.com
*.api.okuki.com
*.app.okuki.com
*.apps.okuki.com
*.assets.okuki.com
*.autodiscover.okuki.com
*.backup.okuki.com
*.be.okuki.com
*.beta.okuki.com
*.citrix.okuki.com
*.clientesvpn.okuki.com
*.connect.okuki.com
*.crm.okuki.com
*.demo.okuki.com
*.dev.okuki.com
*.email.okuki.com
*.etwir.okuki.com
*.exchange.okuki.com
*.forums.okuki.com
*.g.okuki.com
*.gateway.okuki.com
*.gp.okuki.com
*.help.okuki.com
*.hostmaster.okuki.com
*.junni.okuki.com
*.ktbhv.okuki.com
*.m.okuki.com
*.mail.okuki.com
*.neuvoo.okuki.com
*.new.okuki.com
okuki.com
*.okuki.com
*.old.okuki.com
*.on.okuki.com
*.outlook.okuki.com
*.owa.okuki.com
*.palovpn.okuki.com
*.probiller.okuki.com
*.ra.okuki.com
*.rds.okuki.com
*.rdweb.okuki.com
*.remote.okuki.com
*.shop.okuki.com
*.ssl.okuki.com
*.sslvpn.okuki.com
*.store.okuki.com
*.temp.okuki.com
*.test.okuki.com
*.vpn.okuki.com
*.vpngate.okuki.com
*.webmail.okuki.com
*.wiki.okuki.com
*.wp.okuki.com
*.ww41.okuki.com
*.www.okuki.com
*.xapp.okuki.com
*.zpm.okuki.com
*.06c69d95-d036-44db-8749-705500238482.tourlake.org
*.api.tourlake.org
*.assets.tourlake.org
*.blog.tourlake.org
*.dev.tourlake.org
*.exchange.tourlake.org
*.mx.tourlake.org
tourlake.org
*.tourlake.org
Other domains in certificate