Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=de-lieferung.cc
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 04, 2026
Valid Until
May 05, 2026
69 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D5:F0:28:29:B9:83:06:75:46:3F:61:11:8E:71:20:F4:D8:23:6A:8A:5A:C5:DB:7F:EC:10:FE:7C:6C:1C:22:AB
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
ovisi.com
*.ovisi.com
*.api.ovisi.com
appliancedistla.com
*.appliancedistla.com
*.mail.appliancedistla.com
*.sitemap.appliancedistla.com
beneficiosdesalud.com
*.beneficiosdesalud.com
*.ciscoasa.beneficiosdesalud.com
*.m.beneficiosdesalud.com
*.ww16.beneficiosdesalud.com
bestparttimejob.com
*.bestparttimejob.com
*.images.bestparttimejob.com
*.vdewzqfx.bestparttimejob.com
bookerly.io
*.bookerly.io
*.sitemap.bookerly.io
*.sitemaps.bookerly.io
*.app.bsoslot.com
*.blog.bsoslot.com
bsoslot.com
*.bsoslot.com
*.jenkins.bsoslot.com
*.ns.bsoslot.com
de-lieferung.cc
*.de-lieferung.cc
*.random.de-lieferung.cc
destroyfiles.com
*.destroyfiles.com
*.files.destroyfiles.com
*.ww1.destroyfiles.com
faucetalquimia.site
*.faucetalquimia.site
govermentpensions.com
*.govermentpensions.com
*.escaperooms.hedonisthostelbelgrade.com
*.grouphostelbelgrade.hedonisthostelbelgrade.com
hedonisthostelbelgrade.com
*.hedonisthostelbelgrade.com
*.hfbelgrade.hedonisthostelbelgrade.com
*.hostelhedonist2.hedonisthostelbelgrade.com
*.static.hedonisthostelbelgrade.com
*.thebalkanbackpacker.hedonisthostelbelgrade.com
molorozo.space
*.molorozo.space
*.live.nlpmatrix.asia
nlpmatrix.asia
*.nlpmatrix.asia
*.nlponline.nlpmatrix.asia
openhealthgroup.us
*.openhealthgroup.us
orador.com
*.orador.com
*.test.orador.com
*.ww16.orador.com
quickrecupes.us
*.quickrecupes.us
recoveryhealthnetwork.com
*.recoveryhealthnetwork.com
schwb-secured.us
*.schwb-secured.us
*.login.stangel.com
*.sslvpn.stangel.com
stangel.com
*.stangel.com
*.ww16.stangel.com
*.xapp.stangel.com
*.admin.tuj.me
*.ahe.tuj.me
*.bharti.tuj.me
*.dimag.tuj.me
*.du.tuj.me
*.hostmaster.tuj.me
*.kiya.tuj.me
*.rehkar.tuj.me
tuj.me
*.tuj.me
ungthu.com
*.ungthu.com
upplevelser.com
*.upplevelser.com
usayoday.com
*.usayoday.com
wavetell.com
*.wavetell.com
*.random.woolwrth.de
woolwrth.de
*.woolwrth.de
Other domains in certificate