Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=gerringongaccommodation.com.au
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 16, 2026
Valid Until
July 15, 2026
63 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
ED:0B:0D:17:D7:93:33:DB:79:BF:4B:8C:7F:18:1F:83:B5:31:8E:8B:9A:FC:0F:FF:7A:C4:FB:CB:C9:15:13:92
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
sapseattle.com
*.sapseattle.com
*.admin.sapseattle.com
*.assets.sapseattle.com
*.b70ac400-6aa5-4c82-af3a-4dac1837467e.sapseattle.com
*.backend.sapseattle.com
*.cms.sapseattle.com
*.mail1.sapseattle.com
*.ms.sapseattle.com
*.mx.sapseattle.com
*.pbfkbrds.sapseattle.com
*.rds.sapseattle.com
*.sitemap.sapseattle.com
ai-stack.ca
*.ai-stack.ca
*.grjvwyb2ii.ai-stack.ca
gerringongaccommodation.com.au
*.gerringongaccommodation.com.au
*.random.gerringongaccommodation.com.au
*.checkout.marbletoto.com
*.fcbd3e42-8711-46f9-b8fb-1153cec69f3b.marbletoto.com
marbletoto.com
*.marbletoto.com
*.random.marbletoto.com
*.rd.marbletoto.com
*.rds.marbletoto.com
*.remote.marbletoto.com
*.summary.marbletoto.com
*.vpn.marbletoto.com
*.6765395.sengoku-ixa.com
*.81cc.sengoku-ixa.com
*.82834.sengoku-ixa.com
*.analyze.sengoku-ixa.com
*.app.sengoku-ixa.com
*.chart.sengoku-ixa.com
*.ci-demo.sengoku-ixa.com
*.cmgby.sengoku-ixa.com
*.dashboard.sengoku-ixa.com
*.dashs.sengoku-ixa.com
*.dknlc.sengoku-ixa.com
*.elbjw.sengoku-ixa.com
*.fkkcj.sengoku-ixa.com
*.foxty.sengoku-ixa.com
*.hphcl.sengoku-ixa.com
*.intelligence.sengoku-ixa.com
*.internal.sengoku-ixa.com
*.jxjuq.sengoku-ixa.com
*.kenneswmcihkqni.sengoku-ixa.com
*.lzrcd.sengoku-ixa.com
*.mamuk.sengoku-ixa.com
*.metrics.sengoku-ixa.com
*.mta-sts.sengoku-ixa.com
*.njisj.sengoku-ixa.com
*.notexistsdkgdl.sengoku-ixa.com
*.notexistsixtzc.sengoku-ixa.com
*.notexistskczqa.sengoku-ixa.com
*.notexistsmrato.sengoku-ixa.com
*.notexistsoegss.sengoku-ixa.com
*.notexistspmxzo.sengoku-ixa.com
*.notexistspvbss.sengoku-ixa.com
*.notexistsww1.sengoku-ixa.com
*.notexistszsvfp.sengoku-ixa.com
*.nszpq.sengoku-ixa.com
*.oegss.sengoku-ixa.com
*.ototg.sengoku-ixa.com
*.pop.sengoku-ixa.com
*.qadmf.sengoku-ixa.com
*.qljmw.sengoku-ixa.com
*.qpmau.sengoku-ixa.com
*.r12kb.sengoku-ixa.com
*.redash.sengoku-ixa.com
*.remote.sengoku-ixa.com
*.report.sengoku-ixa.com
*.reporting.sengoku-ixa.com
*.reports.sengoku-ixa.com
*.rholu.sengoku-ixa.com
sengoku-ixa.com
*.sengoku-ixa.com
*.stats.sengoku-ixa.com
*.status.sengoku-ixa.com
*.superset.sengoku-ixa.com
*.surbq.sengoku-ixa.com
*.svair.sengoku-ixa.com
*.sxgfn.sengoku-ixa.com
*.tjmhe.sengoku-ixa.com
*.vlhqqg.sengoku-ixa.com
*.vvgbb.sengoku-ixa.com
*.xdedo.sengoku-ixa.com
*.ydwhq.sengoku-ixa.com
Other domains in certificate