Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=automatiodirect.com
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
June 13, 2026
Valid Until
September 11, 2026
85 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8E:68:00:12:59:0E:AC:36:F8:B2:11:AE:6C:55:AE:C6:54:D6:08:4F:14:66:32:8A:4F:C2:B5:9E:2A:30:C8:98
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
av168y.com
*.av168y.com
*.ww25.av168y.com
777-hora777.win
*.777-hora777.win
*.adm.777-hora777.win
*.beta.777-hora777.win
*.docs.777-hora777.win
*.intranet.777-hora777.win
*.public.777-hora777.win
*.sharepoint.777-hora777.win
appanel.co.uk
*.appanel.co.uk
*.random.appanel.co.uk
automatiodirect.com
*.automatiodirect.com
*.eml.automatiodirect.com
*.hostmaster.automatiodirect.com
*.ww2322.automatiodirect.com
*.ww25.automatiodirect.com
*.ww38.automatiodirect.com
*.www.automatiodirect.com
centralpizzeria.com
*.centralpizzeria.com
*.random.centralpizzeria.com
*.2149b319-65e5-47b4-9987-0d3809bbb02c.confidantes.io
*.admin.confidantes.io
*.api.confidantes.io
*.app.confidantes.io
*.bot.confidantes.io
confidantes.io
*.confidantes.io
*.dashboard.confidantes.io
*.dev.confidantes.io
*.panel.confidantes.io
*.test.confidantes.io
*.user.confidantes.io
expiring.mobi
*.expiring.mobi
*.net.expiring.mobi
*.qa.expiring.mobi
futureofwork.it
*.futureofwork.it
*.mx.futureofwork.it
intelligentwealthplan.com
*.intelligentwealthplan.com
*.vpn.intelligentwealthplan.com
irntumor.de
*.irntumor.de
islandbar.co.uk
*.islandbar.co.uk
*.superset.islandbar.co.uk
*.admin.myhet.online
*.api.myhet.online
*.app.myhet.online
*.assets.myhet.online
*.demo.myhet.online
*.dev.myhet.online
myhet.online
*.myhet.online
*.admin.poswizard.io
*.api.poswizard.io
*.bot.poswizard.io
*.dashboard.poswizard.io
poswizard.io
*.poswizard.io
*.test.poswizard.io
*.user.poswizard.io
*.uxumybot.poswizard.io
salon-neoclassico.com
*.salon-neoclassico.com
*.ww25.salon-neoclassico.com
*.ww38.salon-neoclassico.com
*.pp.tripadivsor.com
tripadivsor.com
*.tripadivsor.com
*.ww17.tripadivsor.com
*.ww25.tripadivsor.com
*.ww38.tripadivsor.com
*.answers.undostres.com
*.corp.undostres.com
*.correos.undostres.com
*.faq.undostres.com
*.private.undostres.com
*.topsitehp.undostres.com
undostres.com
*.undostres.com
xn--polenflge-w9a.de
*.xn--polenflge-w9a.de
Other domains in certificate