Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=goccoffeentea.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 02, 2026
Valid Until
July 31, 2026
72 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
23:6B:4D:C3:FD:36:48:38:0D:ED:28:1E:6B:AA:4A:CC:24:2B:13:55:2C:0C:CF:28:48:CC:40:31:19:56:D9:6A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
botmass.com
*.botmass.com
*.19f93777-0997-4eb0-8609-24832ac79c79.botmass.com
*.2a77b91d-2ce6-4fb4-a0bb-5bdad091a3f3.botmass.com
*.97043e5a-7f91-4d0a-a7db-3c4ed0ecde6c.botmass.com
*.admin.botmass.com
*.anbgeexternal.botmass.com
*.api.botmass.com
*.app.botmass.com
*.assets.botmass.com
*.backup.botmass.com
*.cloud.botmass.com
*.demo.botmass.com
*.dev.botmass.com
*.external.botmass.com
*.hml.botmass.com
*.ngbnerds.botmass.com
*.rd.botmass.com
*.rds.botmass.com
*.rdweb.botmass.com
*.remote.botmass.com
*.shop.botmass.com
*.test.botmass.com
*.www.botmass.com
*.app.brashley.photography
brashley.photography
*.brashley.photography
*.d0b857f3-ca9e-48d6-8f40-1bd99d990d66.brashley.photography
*.m.brashley.photography
*.members.brashley.photography
*.beta.freeanuel.com
*.dev.freeanuel.com
*.forums.freeanuel.com
freeanuel.com
*.freeanuel.com
*.m.freeanuel.com
*.pilsnet.freeanuel.com
*.pl.freeanuel.com
*.portfolio.freeanuel.com
*.reg.freeanuel.com
*.report.freeanuel.com
*.ww38.freeanuel.com
goccoffeentea.com
*.goccoffeentea.com
*.aandamechanical.groundpatimetairie.com
*.blog.groundpatimetairie.com
*.dev.groundpatimetairie.com
groundpatimetairie.com
*.groundpatimetairie.com
*.links.groundpatimetairie.com
*.m.groundpatimetairie.com
*.money.groundpatimetairie.com
*.pipeline.groundpatimetairie.com
*.pool.groundpatimetairie.com
*.scanner.groundpatimetairie.com
*.staging1.groundpatimetairie.com
*.staging2.groundpatimetairie.com
*.users.groundpatimetairie.com
*.kwid9.ltd123st.xyz
ltd123st.xyz
*.ltd123st.xyz
*.nan1j.ltd123st.xyz
*.apps.sandil.com
*.games.sandil.com
*.gmail.sandil.com
*.hostmaster.sandil.com
*.link.sandil.com
sandil.com
*.sandil.com
*.stream.sandil.com
*.student.sandil.com
*.users.sandil.com
*.ww25.sandil.com
*.5vs9r.travelsmartcore.xyz
*.6y8gt.travelsmartcore.xyz
*.admin.travelsmartcore.xyz
*.blog.travelsmartcore.xyz
*.dvmktigqlc.travelsmartcore.xyz
*.igqlc.travelsmartcore.xyz
*.kgbsiwsct4.travelsmartcore.xyz
*.mp7tf.travelsmartcore.xyz
*.mvzufogw.travelsmartcore.xyz
*.nslow.travelsmartcore.xyz
*.o7p4x.travelsmartcore.xyz
*.ootbp.travelsmartcore.xyz
*.qpuov.travelsmartcore.xyz
travelsmartcore.xyz
*.travelsmartcore.xyz
*.wakkl.travelsmartcore.xyz
*.wp.travelsmartcore.xyz
Other domains in certificate