Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=curryking.com.au
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
January 23, 2026
Valid Until
April 23, 2026
66 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E8:BC:B7:53:86:65:EF:25:3F:AA:7B:91:3E:ED:B0:E4:27:99:20:01:10:C3:ED:23:65:D8:D2:9C:E4:95:C4:BF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
chatamici.website
*.chatamici.website
0p1k.site
*.0p1k.site
1bhkinmaharashtra-in.site
*.1bhkinmaharashtra-in.site
1degree.store
*.1degree.store
1xipwo.space
*.1xipwo.space
aceslice.store
*.aceslice.store
afromagic.store
*.afromagic.store
ai-university.tech
*.ai-university.tech
airesume.space
*.airesume.space
akseller.store
*.akseller.store
aktrends.store
*.aktrends.store
aniti.store
*.aniti.store
annesgekkoer.online
*.annesgekkoer.online
anshusinha.tech
*.anshusinha.tech
aparna.tech
*.aparna.tech
beautelladesigns.store
*.beautelladesigns.store
beautifynow.store
*.beautifynow.store
bimo1.site
*.bimo1.site
bimo3.site
*.bimo3.site
biobeautyhaven.store
*.biobeautyhaven.store
blumarina.online
*.blumarina.online
bnbstaking.online
*.bnbstaking.online
bonishop.store
*.bonishop.store
brojoismp.space
*.brojoismp.space
carabiargacor.website
*.carabiargacor.website
carioquinhaatacado.online
*.carioquinhaatacado.online
casi-lucky.online
*.casi-lucky.online
causessweets.website
*.causessweets.website
chifully.site
*.chifully.site
chosen1worldwide.store
*.chosen1worldwide.store
cleanone.tech
*.cleanone.tech
clothacollective.space
*.clothacollective.space
clumsystudio.store
*.clumsystudio.store
curryking.com.au
*.curryking.com.au
friendcontact.space
*.friendcontact.space
g-eye.tech
*.g-eye.tech
galxee.site
*.galxee.site
hockeystory.store
*.hockeystory.store
hoteles.au
*.hoteles.au
*.tripadvisor.hoteles.au
kevin-kwan.tech
*.kevin-kwan.tech
laifentech.store
*.laifentech.store
localike.store
*.localike.store
mchoose.store
*.mchoose.store
*.se.mchoose.store
moneyclaims.online
*.moneyclaims.online
Other domains in certificate