Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=divinecoffeeco.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
January 30, 2026
Valid Until
April 30, 2026
76 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CF:1F:41:E0:A0:18:D7:CC:96:75:22:DB:E2:ED:DA:AB:C4:6E:EF:56:31:C2:FA:E0:F6:A4:92:A2:49:59:1F:7C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
abyss25.click
*.abyss25.click
*.m.abyss25.click
activityreg.org
*.activityreg.org
*.ww38.activityreg.org
ambaramvirtue.com
*.ambaramvirtue.com
*.mail.ambaramvirtue.com
annacams.space
*.annacams.space
asperger.life
*.asperger.life
autoglassromel.com
*.autoglassromel.com
avxxxhd.net
*.avxxxhd.net
*.sitemap.avxxxhd.net
blocktonite.com
*.blocktonite.com
*.ww25.blocktonite.com
bluearenalmenorca.com
*.bluearenalmenorca.com
cglive24news.com
*.cglive24news.com
*.bauchi.chartwellhotels.online
chartwellhotels.online
*.chartwellhotels.online
*.cpanel.chartwellhotels.online
*.kano.chartwellhotels.online
*.missau.chartwellhotels.online
*.webmail.chartwellhotels.online
cired2022porto.org
*.cired2022porto.org
codoo.pro
*.codoo.pro
cotmattresses.com.au
*.cotmattresses.com.au
*.random.cotmattresses.com.au
divinecoffeeco.com
*.divinecoffeeco.com
*.ww25.divinecoffeeco.com
donsviral.xyz
*.donsviral.xyz
formacaoexpertdigital.com
*.formacaoexpertdigital.com
i-carta.com
*.i-carta.com
*.ww38.i-carta.com
*.cali.institutional.network
institutional.network
*.institutional.network
kernelhub.org
*.kernelhub.org
lazespg.com
*.lazespg.com
lemontreehotelcareers.com
*.lemontreehotelcareers.com
ligamx.bet
*.ligamx.bet
*.bbs.moosemilker.com
moosemilker.com
*.moosemilker.com
readyokmovie.com
*.readyokmovie.com
*.www.readyokmovie.com
schooling.au
*.schooling.au
siguaautos.com
*.siguaautos.com
*.app.telugump3.in
*.old.telugump3.in
telugump3.in
*.telugump3.in
timegrace.online
*.timegrace.online
waterify.store
*.waterify.store
wezatv.com
*.wezatv.com
*.ww25.wezatv.com
*.91.x99av8.xyz
*.ww25.x99av8.xyz
x99av8.xyz
*.x99av8.xyz
*.ww17.xyzfjt.store
*.ww25.xyzfjt.store
xyzfjt.store
*.xyzfjt.store
Other domains in certificate