Open
Cached
·
4h ago
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=privatethaichefnewmexico.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 21, 2026
Valid Until
August 19, 2026
77 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C6:2E:5A:28:09:84:D2:D1:7A:68:12:CB:EC:89:5D:99:B0:E4:D2:E6:D7:02:34:68:B5:7A:C6:9A:8A:4B:5D:D4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
sinclairwatch.org
*.sinclairwatch.org
*.fr.sinclairwatch.org
*.m.sinclairwatch.org
*.ww1.sinclairwatch.org
*.www.sinclairwatch.org
*.api.cave-sro.info
*.backup.cave-sro.info
cave-sro.info
*.cave-sro.info
*.staging.cave-sro.info
*.api.chaineno.com
*.backup.chaineno.com
chaineno.com
*.chaineno.com
*.dev.chaineno.com
*.mail.chaineno.com
*.rfiraxaqlnstaging.chaineno.com
*.staging.chaineno.com
*.xaqlnstaging.chaineno.com
*.authsmtp.dubricolage.com
dubricolage.com
*.dubricolage.com
*.hostmaster.dubricolage.com
jeetmoney.info
*.jeetmoney.info
*.ms766h.jeetmoney.info
*.www.jeetmoney.info
*.autodiscover.jurnaldenord.info
*.cpanel.jurnaldenord.info
jurnaldenord.info
*.jurnaldenord.info
*.mail.jurnaldenord.info
*.www.jurnaldenord.info
*.assets.multistorechile.com
*.cabinet.multistorechile.com
*.cloud.multistorechile.com
*.demo.multistorechile.com
*.dev.multistorechile.com
multistorechile.com
*.multistorechile.com
*.owa.multistorechile.com
*.rd.multistorechile.com
*.rds.multistorechile.com
*.rdweb.multistorechile.com
*.sitemap.multistorechile.com
*.sitemaps.multistorechile.com
*.test.multistorechile.com
*.webmail.multistorechile.com
nilly.co
*.nilly.co
*.pay.nilly.co
*.ww38.nilly.co
*.hostmaster.payung138.com
payung138.com
*.payung138.com
*.vpn.payung138.com
*.www.payung138.com
*.mx.placestogo.co
placestogo.co
*.placestogo.co
*.app.privatethaichefnewmexico.com
*.demo.privatethaichefnewmexico.com
*.dev.privatethaichefnewmexico.com
privatethaichefnewmexico.com
*.privatethaichefnewmexico.com
*.vpn.privatethaichefnewmexico.com
*.www.privatethaichefnewmexico.com
runlinelab.com
*.runlinelab.com
*.65087fbd-f1b6-4307-8bf3-1ea78a7fd7bf.rwas.estate
*.api.rwas.estate
*.app.rwas.estate
rwas.estate
*.rwas.estate
*.vmgx7m.rwas.estate
*.administrator.sensetspiritualite.com
*.cbxbjk.sensetspiritualite.com
*.m.sensetspiritualite.com
sensetspiritualite.com
*.sensetspiritualite.com
*.dev.spiazza.it
spiazza.it
*.spiazza.it
*.staging.spiazza.it
*.superset.spiazza.it
*.mx.ucgroup.co
*.sitemaps.ucgroup.co
ucgroup.co
*.ucgroup.co
Other domains in certificate