Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=smarttea.org
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 13, 2026
Valid Until
August 11, 2026
88 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
63:69:FD:36:10:D3:8F:46:BF:45:CB:CD:F0:A3:46:8D:2A:E3:03:3D:2D:3B:F1:FC:6D:8F:B3:53:13:D4:EE:54
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
0987654.art
*.0987654.art
*.0bf221a9-c652-4cd1-9c05-04c51347f579.0987654.art
*.1d9c0c98-d9e1-4f19-a37f-aeeac0648f23.0987654.art
*.sitemaps.0987654.art
alexabet88.co
*.alexabet88.co
*.mail.alexabet88.co
*.webdisk.alexabet88.co
allintomood.com
*.allintomood.com
*.ww38.allintomood.com
clicktoclose.com
*.clicktoclose.com
*.www.clicktoclose.com
gigatits.com
*.gigatits.com
*.ww16.gigatits.com
*.ww38.gigatits.com
iaald-africa.org
*.iaald-africa.org
*.mail.iaald-africa.org
lightwearz.com
*.lightwearz.com
*.ww38.lightwearz.com
*.057ee151-c944-4393-af44-f29256d03056.livenevertheless.com
*.5e65239e-7a6e-459e-9636-5f5c5d8a4e77.livenevertheless.com
*.admin.livenevertheless.com
*.api.livenevertheless.com
*.assets.livenevertheless.com
*.dazy85.livenevertheless.com
*.demo.livenevertheless.com
livenevertheless.com
*.livenevertheless.com
*.test.livenevertheless.com
*.comwww.meetsz2ca.sbs
meetsz2ca.sbs
*.meetsz2ca.sbs
*.affidea.piantedo.com
*.argo.piantedo.com
*.dev.piantedo.com
*.hrm.piantedo.com
piantedo.com
*.piantedo.com
*.remote.piantedo.com
*.report.piantedo.com
*.superset.piantedo.com
*.www.piantedo.com
*.htkl30.premiercapitalsolutions.com
premiercapitalsolutions.com
*.premiercapitalsolutions.com
*.b.rcwilley.co
rcwilley.co
*.rcwilley.co
*.random.redfoxy.store
redfoxy.store
*.redfoxy.store
romataxi.it
*.romataxi.it
*.assets.signalher.com
signalher.com
*.signalher.com
*.sitemaps.smartbuyofficefurniture.com
smartbuyofficefurniture.com
*.smartbuyofficefurniture.com
*.ww1.smartbuyofficefurniture.com
*.ww99.smartbuyofficefurniture.com
smarttea.org
*.smarttea.org
*.www.smarttea.org
*.admin.sportsliveamerica.com
*.api.sportsliveamerica.com
*.app.sportsliveamerica.com
*.assets.sportsliveamerica.com
*.bqxslremote.sportsliveamerica.com
*.demo.sportsliveamerica.com
*.dev.sportsliveamerica.com
*.hlqnizxpkwstaging.sportsliveamerica.com
*.omufwuat.sportsliveamerica.com
*.remote.sportsliveamerica.com
sportsliveamerica.com
*.sportsliveamerica.com
*.staging.sportsliveamerica.com
*.test.sportsliveamerica.com
*.ujcv92.sportsliveamerica.com
*.vpn.sportsliveamerica.com
woodworking-lathe-purchase-machines.click
*.woodworking-lathe-purchase-machines.click
*.ww25.woodworking-lathe-purchase-machines.click
*.ww38.woodworking-lathe-purchase-machines.click
Other domains in certificate