Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=fflockerroom.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 07, 2026
Valid Until
April 07, 2026
51 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8A:5B:50:5D:F0:32:2C:B2:18:ED:9D:66:5C:C9:11:35:8F:CE:ED:E5:3E:26:54:36:34:61:68:EF:FF:59:64:77
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
solidworkd.com
*.solidworkd.com
*.ww.solidworkd.com
allfreegreetingcards.com
*.allfreegreetingcards.com
*.random.allfreegreetingcards.com
awards-wojak.finance
*.awards-wojak.finance
babygag.com
*.babygag.com
*.ai.binanca.us
*.beta.binanca.us
binanca.us
*.binanca.us
*.co.binanca.us
*.com.binanca.us
*.demo.binanca.us
*.flow.binanca.us
*.flowiseai.binanca.us
*.in.binanca.us
*.test.binanca.us
*.vc.binanca.us
boite-automatique.net
*.boite-automatique.net
comprariphonesinenganche666868.icu
*.comprariphonesinenganche666868.icu
correct.au
*.correct.au
dcms.com.au
*.dcms.com.au
*.ipv6.dcms.com.au
*.mail.dcms.com.au
disco.com.au
*.disco.com.au
*.mailhost.disco.com.au
europeantraderslimited.com
*.europeantraderslimited.com
fflockerroom.com
*.fflockerroom.com
*.mail.fflockerroom.com
goji123.com
*.goji123.com
*.h081xe.goji123.com
insuranceproviders130861.icu
*.insuranceproviders130861.icu
kloudly.xyz
*.kloudly.xyz
*.bi.ltcplay.xyz
*.ci.ltcplay.xyz
*.kp5po.ltcplay.xyz
ltcplay.xyz
*.ltcplay.xyz
*.server1.ltcplay.xyz
*.ww25.ltcplay.xyz
myfreespiritcard.com
*.myfreespiritcard.com
*.wew.myfreespiritcard.com
*.ww25.myfreespiritcard.com
nodehost.ai
*.nodehost.ai
onlineluga.com
*.onlineluga.com
*.amazon.profit.org
*.binary.profit.org
*.cdn.profit.org
*.eat.profit.org
*.girl.profit.org
*.mgm.profit.org
profit.org
*.profit.org
*.ssh.profit.org
*.strip.profit.org
sagarscaffolding.com
*.sagarscaffolding.com
*.maker.sehs.io
sehs.io
*.sehs.io
seinen-kouken.net
*.seinen-kouken.net
*.www.seinen-kouken.net
sscnyk1.top
*.sscnyk1.top
*.dqxy.taprootsystems.com
taprootsystems.com
*.taprootsystems.com
*.xgzx.taprootsystems.com
visermart.com
*.visermart.com
wastewatertreatmentunitedstates081639.icu
*.wastewatertreatmentunitedstates081639.icu
Other domains in certificate