Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=spellwise.xyz
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 28, 2026
Valid Until
July 27, 2026
83 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
10:0D:2F:48:54:8E:FC:E0:F8:9C:82:C9:66:F4:11:25:24:02:27:11:50:86:AD:AC:42:87:E7:95:F2:31:09:1F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
yify.info
*.yify.info
*.i.yify.info
*.ww1.yify.info
2bp798.software
*.2bp798.software
*.s.2bp798.software
arcoin.co
*.arcoin.co
*.autodiscover.christiantalk660.com
christiantalk660.com
*.christiantalk660.com
*.hostmaster.christiantalk660.com
*.icecast.christiantalk660.com
*.mail.christiantalk660.com
*.www.christiantalk660.com
comidaparallevar.com
*.comidaparallevar.com
*.comidaparallevarenpruebas.comidaparallevar.com
*.cpcalendars.comidaparallevar.com
*.ftp.comidaparallevar.com
*.www.comidaparallevar.com
*.adultwebz.kllarna.com
*.cornishconnect.kllarna.com
*.cqshop.kllarna.com
*.direct2ship.kllarna.com
kllarna.com
*.kllarna.com
*.mail.kllarna.com
*.nonprodd.kllarna.com
*.playgroound.kllarna.com
*.www.kllarna.com
*.a34d52bd-1675-4bea-9609-2e9528194a93.ok9a5.net
*.admin.ok9a5.net
*.api.ok9a5.net
*.app.ok9a5.net
*.assets.ok9a5.net
*.bwcixapp.ok9a5.net
*.cb5aa254-a65e-4f08-bf77-c64bb669cfbc.ok9a5.net
*.chat.ok9a5.net
*.daymzstaging.ok9a5.net
*.demo.ok9a5.net
*.dev.ok9a5.net
*.e0be01b5-953b-4a6b-977d-f6f79db01854.ok9a5.net
*.exchange.ok9a5.net
*.gw.ok9a5.net
*.lqtrjstaging.ok9a5.net
*.mailx.ok9a5.net
*.mx03.ok9a5.net
ok9a5.net
*.ok9a5.net
*.partners.ok9a5.net
*.shop.ok9a5.net
*.sms.ok9a5.net
*.staging.ok9a5.net
*.stg.ok9a5.net
*.test.ok9a5.net
*.v2.ok9a5.net
*.vxasjweb.ok9a5.net
*.web2.ok9a5.net
*.wp.ok9a5.net
*.5c8f40f1-89bf-441d-88a5-045bd9896400.socialbusinesspro.email
*.6f4fa8c9-d976-4018-91d8-3470f27fc2e1.socialbusinesspro.email
*.admin.socialbusinesspro.email
*.api.socialbusinesspro.email
*.app.socialbusinesspro.email
*.apps.socialbusinesspro.email
*.assets.socialbusinesspro.email
*.demo.socialbusinesspro.email
*.dev.socialbusinesspro.email
*.mqoffapi.socialbusinesspro.email
*.outlook.socialbusinesspro.email
*.sitemap.socialbusinesspro.email
socialbusinesspro.email
*.socialbusinesspro.email
*.store.socialbusinesspro.email
*.16bz5.spellwise.xyz
*.1yme1.spellwise.xyz
*.3nxyc.spellwise.xyz
*.6y8gt.spellwise.xyz
*.8joac.spellwise.xyz
*.fdy0p.spellwise.xyz
*.g22y8.spellwise.xyz
*.q86h5.spellwise.xyz
spellwise.xyz
*.spellwise.xyz
*.hostmaster.vabet.info
*.m.vabet.info
vabet.info
*.vabet.info
Other domains in certificate