Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=alpha-heater.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 06, 2026
Valid Until
May 07, 2026
80 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A4:1C:1F:C9:52:D8:FC:96:4B:AC:FA:D3:3F:6F:8F:B6:CC:DA:14:4D:47:18:71:5B:A5:70:0E:01:07:A5:F9:53
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
apotheken-apps.com
*.apotheken-apps.com
alpha-heater.com
*.alpha-heater.com
amidase.org
*.amidase.org
amthanhdigital.com
*.amthanhdigital.com
ank76.com
*.ank76.com
annecyballetjunior.fr
*.annecyballetjunior.fr
arduinofrance.com
*.arduinofrance.com
arike-uk.com
*.arike-uk.com
arnffunhoos.com
*.arnffunhoos.com
articlemapzone.com
*.articlemapzone.com
asicoded.com
*.asicoded.com
assuranceterrorisme.fr
*.assuranceterrorisme.fr
auto-insurance-ca-7358.click
*.auto-insurance-ca-7358.click
autorally.fr
*.autorally.fr
avbgb.shop
*.avbgb.shop
awakenedtools.com
*.awakenedtools.com
ayamgoreng.monster
*.ayamgoreng.monster
ayamkari.my
*.ayamkari.my
ayurhealthspa.com
*.ayurhealthspa.com
b0tlr.com
*.b0tlr.com
b12333.vip
*.b12333.vip
b12888.vip
*.b12888.vip
b2bcmoclubinsiders.com
*.b2bcmoclubinsiders.com
b2bmarketing.info
*.b2bmarketing.info
b5qcpr6.shop
*.b5qcpr6.shop
b78238.com
*.b78238.com
babu88-bn.com
*.babu88-bn.com
babu88.best
*.babu88.best
babysitter-us.click
*.babysitter-us.click
badgeloop.com
*.badgeloop.com
bancadoithuong.mba
*.bancadoithuong.mba
banditfalls.com
*.banditfalls.com
taranecodesign.uk
*.taranecodesign.uk
tarjetarojahd.org
*.tarjetarojahd.org
tdmv.fr
*.tdmv.fr
team-ecosourcejanitorial.com
*.team-ecosourcejanitorial.com
tejidoshernandez.es
*.tejidoshernandez.es
telegrammoney.com
*.telegrammoney.com
telemediary.org
*.telemediary.org
texaspropertyappraisals.com
*.texaspropertyappraisals.com
thedatingtips.com
*.thedatingtips.com
thedonutaccess.com
*.thedonutaccess.com
thedonutnewsonline.com
*.thedonutnewsonline.com
thefocusgroup.site
*.thefocusgroup.site
thekeplercommerce.com
*.thekeplercommerce.com
Other domains in certificate