Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=comboluxurynailsandspa.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 24, 2026
Valid Until
August 22, 2026
71 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A9:13:58:D9:F2:6A:FB:BE:17:56:ED:80:A1:3D:7C:DD:9A:9C:C5:0D:19:C4:BA:2B:F8:27:D2:AA:C1:14:3E:72
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
ym57.me
*.ym57.me
comboluxurynailsandspa.com
*.comboluxurynailsandspa.com
cz8bcqmj8g.top
*.cz8bcqmj8g.top
dax69live.com
*.dax69live.com
decentralizedweb.ai
*.decentralizedweb.ai
drone-br-34.sbs
*.drone-br-34.sbs
ebenezer.app
*.ebenezer.app
edb3rpt.top
*.edb3rpt.top
elamana.market
*.elamana.market
ff9570.com
*.ff9570.com
flamedot.com
*.flamedot.com
gmgacquisitions.com
*.gmgacquisitions.com
googlezerogravity.com
*.googlezerogravity.com
gossipparamount.xyz
*.gossipparamount.xyz
harrietcowan.farm
*.harrietcowan.farm
hbqqwba432.vip
*.hbqqwba432.vip
hjzyf378p2.top
*.hjzyf378p2.top
inailsandlashaurora.com
*.inailsandlashaurora.com
infotimes.sbs
*.infotimes.sbs
inscricao-exame-enem2025.site
*.inscricao-exame-enem2025.site
internetconnections-de.sbs
*.internetconnections-de.sbs
keno88.club
*.keno88.club
leon-casino-gc8lt.xyz
*.leon-casino-gc8lt.xyz
offiway.com
*.offiway.com
pbwyd.blog
*.pbwyd.blog
pomyxi.info
*.pomyxi.info
quero-inscrever.pro
*.quero-inscrever.pro
r45.my
*.r45.my
rise.free
*.rise.free
rtpkoko33.monster
*.rtpkoko33.monster
russianprojectvincentmoon.com
*.russianprojectvincentmoon.com
senvrusi-ib.com
*.senvrusi-ib.com
sillycybin.shop
*.sillycybin.shop
smartpineapple.io
*.smartpineapple.io
sportsagent.co
*.sportsagent.co
startuphealthcare.org
*.startuphealthcare.org
strategymoney.com
*.strategymoney.com
studybetter.xyz
*.studybetter.xyz
top3beasts.com
*.top3beasts.com
travelmavenmasters.xyz
*.travelmavenmasters.xyz
tuktukbites.com
*.tuktukbites.com
v6v3927.xyz
*.v6v3927.xyz
vip79.art
*.vip79.art
wzqb782.top
*.wzqb782.top
zzz6835.top
*.zzz6835.top
Other domains in certificate