Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=sugarsixmarket.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 03, 2026
Valid Until
August 01, 2026
86 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5E:7A:99:45:BC:8E:8C:02:17:ED:33:4D:DF:F8:3E:F0:14:B5:9E:CB:C8:CA:80:4F:71:BA:7C:7D:B3:78:36:A7
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
btwlogin.com
*.btwlogin.com
*.98c480cf-5adb-4a27-83eb-768346258d06.btwlogin.com
*.a0f3db9d-5f92-4b41-81db-d29b9ba7f99c.btwlogin.com
*.admin.btwlogin.com
*.alaotapp.btwlogin.com
*.api.btwlogin.com
*.app.btwlogin.com
*.f043ea12-d4f9-4d52-b947-e123956b0837.btwlogin.com
*.fvgfoapp.btwlogin.com
*.q4e5nd.btwlogin.com
*.staging.btwlogin.com
*.testing.btwlogin.com
*.vpn.btwlogin.com
*.www.btwlogin.com
boeshreen.com
*.boeshreen.com
*.email.boeshreen.com
*.forum.boeshreen.com
*.galeria.boeshreen.com
*.intranet.boeshreen.com
*.loja.boeshreen.com
*.pp.boeshreen.com
*.staging.boeshreen.com
*.wiki.boeshreen.com
*.ww25.boeshreen.com
brisbanebusinessinsurance.com.au
*.brisbanebusinessinsurance.com.au
buildupai.tech
*.buildupai.tech
custompictures.it
*.custompictures.it
easypathconsultant.com
*.easypathconsultant.com
*.ww25.easypathconsultant.com
*.ww38.easypathconsultant.com
filescannerplus.com
*.filescannerplus.com
*.ww38.filescannerplus.com
highermood.com
*.highermood.com
*.isleofvanilla.highermood.com
*.admin.ihlm.it
*.api.ihlm.it
*.app.ihlm.it
*.dashboards.ihlm.it
*.dev.ihlm.it
*.home.ihlm.it
*.hostmaster.ihlm.it
ihlm.it
*.ihlm.it
*.intel.ihlm.it
*.reports.ihlm.it
*.staging.ihlm.it
keyserver.co
*.keyserver.co
*.mail.keyserver.co
*.mx.keyserver.co
*.www.keyserver.co
knocksteady.com
*.knocksteady.com
paulomalhas.com.br
*.paulomalhas.com.br
*.ww25.paulomalhas.com.br
*.admin.sugarsixmarket.com
*.api.sugarsixmarket.com
*.app.sugarsixmarket.com
*.assets.sugarsixmarket.com
*.b2c75383-61c0-4182-8d61-b39182703ef9.sugarsixmarket.com
*.c7af3081-18c2-4bad-9f7a-153fe0d571f8.sugarsixmarket.com
*.cloud.sugarsixmarket.com
*.cosbsmnimdyqkturdweb.sugarsixmarket.com
*.demo.sugarsixmarket.com
*.dev.sugarsixmarket.com
*.loja.sugarsixmarket.com
*.mnimdyqkturdweb.sugarsixmarket.com
*.mx.sugarsixmarket.com
*.rd.sugarsixmarket.com
*.rds.sugarsixmarket.com
*.rdweb.sugarsixmarket.com
*.remote.sugarsixmarket.com
*.rvgkploja.sugarsixmarket.com
sugarsixmarket.com
*.sugarsixmarket.com
*.test.sugarsixmarket.com
*.vpn.sugarsixmarket.com
trucking.co.za
*.trucking.co.za
*.ww25.trucking.co.za
Other domains in certificate