Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=strawberryruntz.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 21, 2026
Valid Until
July 20, 2026
72 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
36:5D:5A:C7:DB:D8:6D:74:10:91:DD:64:B7:67:DD:8D:34:18:44:CF:67:75:0E:D7:FB:60:B2:81:A0:40:A8:D3
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
dpf.it
*.dpf.it
*.access.dpf.it
*.autoconfig.dpf.it
*.data.dpf.it
*.demo.dpf.it
*.hostmaster.dpf.it
*.notexistsbackend.dpf.it
*.pub.dpf.it
*.rds.dpf.it
*.remote.dpf.it
*.vpnssl.dpf.it
*.webmail.dpf.it
*.zs.dpf.it
35011.it
*.35011.it
advokat.live
*.advokat.live
*.a.agenticslack.com
agenticslack.com
*.agenticslack.com
*.rd.agenticslack.com
*.rds.agenticslack.com
*.rdweb.agenticslack.com
*.remote.agenticslack.com
dominio.bet
*.dominio.bet
*.bdisk.flikbet.info
*.cpcalendars.flikbet.info
flikbet.info
*.flikbet.info
*.sitemaps.flikbet.info
happyendings.co.uk
*.happyendings.co.uk
*.api.openagentic.ai
*.manus.openagentic.ai
openagentic.ai
*.openagentic.ai
*.sitemaps.openagentic.ai
*.www.openagentic.ai
*.bitcoinprofit.otrq.com
otrq.com
*.otrq.com
*.mail.play6.tv
play6.tv
*.play6.tv
*.whm.play6.tv
*.www.play6.tv
*.g2nzm2pv.pscxgc.com
pscxgc.com
*.pscxgc.com
*.w76thwp.pscxgc.com
sofi.bio
*.sofi.bio
spfdmochessclub.org
*.spfdmochessclub.org
*.a.strawberryruntz.com
*.app.strawberryruntz.com
*.assets.strawberryruntz.com
*.bcaa453a-71d9-49ec-983a-1bf5d666193a.strawberryruntz.com
*.dd49fa4b-397a-4bf4-9316-9df2606551ff.strawberryruntz.com
*.demo.strawberryruntz.com
*.dev.strawberryruntz.com
*.dev1redash.strawberryruntz.com
*.kazan.strawberryruntz.com
*.redash.strawberryruntz.com
*.stage.strawberryruntz.com
strawberryruntz.com
*.strawberryruntz.com
*.webmail.strawberryruntz.com
*.wflbzdemo.strawberryruntz.com
*.www.strawberryruntz.com
tirerepairs.com.au
*.tirerepairs.com.au
*.swag.touretteskaraoke.com
touretteskaraoke.com
*.touretteskaraoke.com
tx88app.com
*.tx88app.com
*.mail.wichitastate.one
wichitastate.one
*.wichitastate.one
*.mail.www-medpex.de
*.remote.www-medpex.de
www-medpex.de
*.www-medpex.de
*.www.www-medpex.de
*.m.xiangshi123.com
xiangshi123.com
*.xiangshi123.com
Other domains in certificate