Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=all-fit-so.store
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 13, 2026
Valid Until
April 13, 2026
47 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8A:61:5D:67:03:E9:3A:16:1E:5B:B7:CB:0E:C3:1D:9B:02:FC:8C:50:A5:C9:9E:D7:6E:7D:BF:06:96:DC:92:2A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
calaveritas.com
*.calaveritas.com
agentfreeproperty.com.au
*.agentfreeproperty.com.au
all-fit-so.store
*.all-fit-so.store
babeltotoslot.info
*.babeltotoslot.info
cinica-web.online
*.cinica-web.online
*.ww25.cinica-web.online
clg.us
*.clg.us
clubdolce.com
*.clubdolce.com
*.hostmaster.clubdolce.com
cookingequipment.com.au
*.cookingequipment.com.au
cuiped.com
*.cuiped.com
cyberbet.bet
*.cyberbet.bet
*.lol-2.cyberbet.bet
*.lol.cyberbet.bet
*.new-csgo.cyberbet.bet
dinehimalayatandoori.co.uk
*.dinehimalayatandoori.co.uk
efm.us
*.efm.us
foodstation-delft.nl
*.foodstation-delft.nl
glenbrookplants.com
*.glenbrookplants.com
*.tendollarstore.glenbrookplants.com
hdo.us
*.hdo.us
hir.us
*.hir.us
horizonbkue.com
*.horizonbkue.com
kissup.sbs
*.kissup.sbs
*.www.kissup.sbs
mychecklist4u.com
*.mychecklist4u.com
*.search.mychecklist4u.com
*.webdisk.mychecklist4u.com
*.ww25.mychecklist4u.com
*.ww38.mychecklist4u.com
offlogin.online
*.offlogin.online
*.api.playspot.online
playspot.online
*.playspot.online
*.webdisk.playspot.online
*.webmail.playspot.online
poiananailspa.com
*.poiananailspa.com
rydeelectrician.com.au
*.rydeelectrician.com.au
*.52bc1d5a-a821-4651-9fdf-e1a77ee142fc.saramacca.com
*.feysle.saramacca.com
*.mail.saramacca.com
*.nl.saramacca.com
*.random.saramacca.com
saramacca.com
*.saramacca.com
*.webmail.saramacca.com
*.wildcard.saramacca.com
*.www.saramacca.com
sunshinecoastbincleaning.com.au
*.sunshinecoastbincleaning.com.au
taverncornwall.co.uk
*.taverncornwall.co.uk
*.www.taverncornwall.co.uk
*.random.toohuman.net
toohuman.net
*.toohuman.net
tuyensinhnganhyduoc.com
*.tuyensinhnganhyduoc.com
*.ww7.tuyensinhnganhyduoc.com
*.ftp.walrusnews.online
walrusnews.online
*.walrusnews.online
workout-plans.club
*.workout-plans.club
*.ww25.workout-plans.club
*.ww25.xhwide4.co
xhwide4.co
*.xhwide4.co
Other domains in certificate