Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=laurel.au
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 25, 2026
Valid Until
July 24, 2026
61 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BD:9A:EF:F7:A8:0E:54:CB:A1:A8:B5:4D:26:60:FA:18:C0:FD:61:15:13:F8:EE:AD:E0:0D:48:66:D5:CA:B8:2A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
adonl.com
*.adonl.com
*.rds.adonl.com
*.secure.adonl.com
*.sslvpn.adonl.com
2me.net
*.2me.net
*.email.2me.net
*.geschichte.2me.net
*.gesetze.2me.net
dpbhn.trade
*.dpbhn.trade
*.trade.dpbhn.trade
*.adcf6ffd-d9b3-409d-96ee-e1139692f341.hiuthor89.xyz
*.enr3p.hiuthor89.xyz
*.eposta.hiuthor89.xyz
*.fcvkr.hiuthor89.xyz
*.fpgctqdiek.hiuthor89.xyz
*.fz4qv.hiuthor89.xyz
*.hifeiqdiek.hiuthor89.xyz
hiuthor89.xyz
*.hiuthor89.xyz
*.mail.hiuthor89.xyz
*.nslow.hiuthor89.xyz
*.perm.hiuthor89.xyz
*.preprod.hiuthor89.xyz
*.qa.hiuthor89.xyz
*.ques8.hiuthor89.xyz
*.rustore.hiuthor89.xyz
*.s5kjz.hiuthor89.xyz
*.ssvuvenr3p.hiuthor89.xyz
*.staging.hiuthor89.xyz
*.test.hiuthor89.xyz
*.uat.hiuthor89.xyz
*.web.hiuthor89.xyz
*.wmacshtl.hiuthor89.xyz
*.alpha.inflorence.it
*.analytic.inflorence.it
*.api.inflorence.it
*.app.inflorence.it
*.bi.inflorence.it
*.chart.inflorence.it
*.dashboard.inflorence.it
*.dev.inflorence.it
inflorence.it
*.inflorence.it
*.report.inflorence.it
*.reporting.inflorence.it
*.supersets.inflorence.it
laurel.au
*.laurel.au
*.africa.nicklart.com
*.ag.nicklart.com
*.agro.nicklart.com
*.aphrike.nicklart.com
*.billing.nicklart.com
*.bukedde.nicklart.com
*.ecouganda.nicklart.com
*.excellentbags.nicklart.com
*.finalwebsite.nicklart.com
*.gn.nicklart.com
*.gnassociates.nicklart.com
*.king.nicklart.com
*.kingly.nicklart.com
*.kings.nicklart.com
*.kingtours.nicklart.com
*.kkobe.nicklart.com
*.ksssc.nicklart.com
*.kt.nicklart.com
*.lida.nicklart.com
*.lidaafrica.nicklart.com
*.lidaafricafinal.nicklart.com
*.lidafinal.nicklart.com
*.new.nicklart.com
nicklart.com
*.nicklart.com
*.opd.nicklart.com
*.pbu.nicklart.com
*.postbank.nicklart.com
*.standardsigns.nicklart.com
*.test.nicklart.com
*.ug.nicklart.com
*.ugfreshdaily.nicklart.com
*.universal.nicklart.com
*.utb.nicklart.com
*.vic.nicklart.com
*.www.nicklart.com
*.blog.xn--g52ay3i.com
xn--g52ay3i.com
*.xn--g52ay3i.com
Other domains in certificate