Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=doublecapitalusdmarket.xyz
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 25, 2026
Valid Until
August 23, 2026
75 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
2A:74:7A:FD:8E:8C:1A:5F:D0:B6:D3:40:CF:A6:30:1A:54:E3:8D:5B:50:5B:F0:4C:2E:9E:72:23:90:CA:91:17
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
wpgap.com
*.wpgap.com
589677.lol
*.589677.lol
61124.lgbt
*.61124.lgbt
630339.vip
*.630339.vip
85432231.top
*.85432231.top
87469.my
*.87469.my
93825.blog
*.93825.blog
964295.lol
*.964295.lol
9u9u.cc
*.9u9u.cc
aassab.vip
*.aassab.vip
abvcd.work
*.abvcd.work
azarama.com
*.azarama.com
bocqezrvbz.sbs
*.bocqezrvbz.sbs
bocqezrvgs.sbs
*.bocqezrvgs.sbs
brush-cut-br55.sbs
*.brush-cut-br55.sbs
currantcatalog.com
*.currantcatalog.com
doublecapitalusdmarket.xyz
*.doublecapitalusdmarket.xyz
eooglg.com
*.eooglg.com
fanrasy.com
*.fanrasy.com
gameees.com
*.gameees.com
gameely.com
*.gameely.com
inscricaooficialenem.asia
*.inscricaooficialenem.asia
jfzxk.work
*.jfzxk.work
jitf1.com
*.jitf1.com
jognr.sbs
*.jognr.sbs
k44g.cyou
*.k44g.cyou
keithlightsey.com
*.keithlightsey.com
kh088.cc
*.kh088.cc
kiiibf.pro
*.kiiibf.pro
kiomsan.shop
*.kiomsan.shop
kypdxfqjbn.sbs
*.kypdxfqjbn.sbs
mlfer.com
*.mlfer.com
mohnberg-gmbh.de
*.mohnberg-gmbh.de
ryeef.com
*.ryeef.com
ryigg.com
*.ryigg.com
sog510.cyou
*.sog510.cyou
summerfridaystoreshop.vip
*.summerfridaystoreshop.vip
tallj.com
*.tallj.com
ujifilm.com
*.ujifilm.com
watimoc.com
*.watimoc.com
whpost.com
*.whpost.com
www3watches.com
*.www3watches.com
wwwactivision.com
*.wwwactivision.com
xnmtrading.com
*.xnmtrading.com
xxxfff.cc
*.xxxfff.cc
Other domains in certificate