Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=whitehallgrocery.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 05, 2026
Valid Until
August 03, 2026
83 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4C:AF:BA:05:F8:BD:67:D6:5C:87:5E:76:E5:DE:F3:14:18:A9:2B:D7:AC:9E:66:EA:E3:98:DD:A8:DD:29:A1:53
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
88 domains
cinab.net
*.cinab.net
*.mail.cinab.net
*.portal.cinab.net
610108.cc
*.610108.cc
*.sitemaps.610108.cc
*.www.610108.cc
*.158fefe6-83e1-4cf0-8da0-25a79080ef78.77661.cc
77661.cc
*.77661.cc
bywaytravel.cc
*.bywaytravel.cc
*.ww38.bywaytravel.cc
metaversecapitals.live
*.metaversecapitals.live
*.portal.metaversecapitals.live
*.demo.myphamgico.com
myphamgico.com
*.myphamgico.com
*.test.myphamgico.com
*.admin.poolu.app
*.api.poolu.app
*.assets.poolu.app
*.autodiscover.poolu.app
*.demo.poolu.app
*.dev.poolu.app
*.en.poolu.app
*.ff414209-065a-4ea0-b82c-a4454ef9c72b.poolu.app
*.m.poolu.app
poolu.app
*.poolu.app
*.press.poolu.app
*.ry4ur5.poolu.app
*.test.poolu.app
*.api.tcclomv-uu.buzz
*.bgptools-wildcard-confirmed.tcclomv-uu.buzz
tcclomv-uu.buzz
*.tcclomv-uu.buzz
*.hostmaster.tomhumalaska.com
tomhumalaska.com
*.tomhumalaska.com
*.29557266-abf4-434c-b7d0-eb9076664e63.travelvaluevoyage.live
*.5f1285a6-8889-47f2-951a-6f75099081bb.travelvaluevoyage.live
*.api.travelvaluevoyage.live
*.dev.travelvaluevoyage.live
*.e9fba986-3d22-406e-a70f-ffea01e9f219.travelvaluevoyage.live
*.members.travelvaluevoyage.live
*.new.travelvaluevoyage.live
*.qa.travelvaluevoyage.live
*.test.travelvaluevoyage.live
travelvaluevoyage.live
*.travelvaluevoyage.live
*.www.travelvaluevoyage.live
*.random.tructiepbongdaz.live
*.sitemaps.tructiepbongdaz.live
tructiepbongdaz.live
*.tructiepbongdaz.live
*.ww7.tructiepbongdaz.live
*.app.updatenewsmag.com
*.blog135.updatenewsmag.com
*.m.updatenewsmag.com
*.tilaus.updatenewsmag.com
updatenewsmag.com
*.updatenewsmag.com
*.webmail.updatenewsmag.com
*.secure.viewingrooms.net
*.test.viewingrooms.net
*.v1.viewingrooms.net
*.v2.viewingrooms.net
viewingrooms.net
*.viewingrooms.net
*.vpn.viewingrooms.net
*.web.viewingrooms.net
*.admin.whitehallgrocery.com
*.mail.whitehallgrocery.com
*.random.whitehallgrocery.com
*.remote.whitehallgrocery.com
*.sitemaps.whitehallgrocery.com
*.staging.whitehallgrocery.com
*.status.whitehallgrocery.com
*.sucuriip.whitehallgrocery.com
whitehallgrocery.com
*.whitehallgrocery.com
*.whm.whitehallgrocery.com
*.ww1.whitehallgrocery.com
*.ww99.whitehallgrocery.com
*.www.whitehallgrocery.com
Other domains in certificate