Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=locate.bio
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 04, 2026
Valid Until
May 05, 2026
80 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D0:9C:4B:BD:41:4C:EE:18:95:C9:28:B1:5D:55:14:32:2A:D3:EF:20:75:F6:AF:9B:D2:F5:45:56:1B:F0:E9:FF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
hwansang.net
*.hwansang.net
*.ww1.hwansang.net
ayunar.com
*.ayunar.com
*.ww1.ayunar.com
*.ciscovpn.holton.net
*.firewall.holton.net
holton.net
*.holton.net
*.ww17.holton.net
*.hostmaster.locate.bio
locate.bio
*.locate.bio
*.orchestrator.locate.bio
*.random.locate.bio
*.sitemap.locate.bio
*.www.locate.bio
*.research.scamartist.it
scamartist.it
*.scamartist.it
tryedem.com
*.tryedem.com
tuesdays.it
*.tuesdays.it
tunait0t0.com
*.tunait0t0.com
upflow.it
*.upflow.it
upset.it
*.upset.it
usawebproxy.com
*.usawebproxy.com
vand.it
*.vand.it
vaobolucky88.live
*.vaobolucky88.live
vaqkmw.us
*.vaqkmw.us
visionaryroadtravel.xyz
*.visionaryroadtravel.xyz
walkon.it
*.walkon.it
webmax.it
*.webmax.it
wellitem.com
*.wellitem.com
wes43.top
*.wes43.top
whatareyou.it
*.whatareyou.it
wheres.it
*.wheres.it
whiteplanet.it
*.whiteplanet.it
windchill.it
*.windchill.it
winterski.it
*.winterski.it
woodliving.it
*.woodliving.it
workstations.it
*.workstations.it
worldwidevirus.it
*.worldwidevirus.it
wormlive.com
*.wormlive.com
www89252.vip
*.www89252.vip
xip655.top
*.xip655.top
xn--1lq90ieulhpb.com
*.xn--1lq90ieulhpb.com
xn--9kq250g5o4a.com
*.xn--9kq250g5o4a.com
xn--9kqr09ail3a.org
*.xn--9kqr09ail3a.org
xxw.it
*.xxw.it
yhasb.tv
*.yhasb.tv
yo4ln.net
*.yo4ln.net
yti6uy.shop
*.yti6uy.shop
yyzz970.xyz
*.yyzz970.xyz
zhan114.top
*.zhan114.top
Other domains in certificate