Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=beauty-acupuncture-899261259.click
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 31, 2026
Valid Until
May 01, 2026
79 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
2B:C1:11:60:C5:BF:41:7C:26:37:BF:20:5F:D3:1A:62:B6:4F:5B:E8:BF:27:93:F6:0F:54:26:0A:C1:83:39:54
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
billa.net
*.billa.net
beauty-acupuncture-899261259.click
*.beauty-acupuncture-899261259.click
begums.com
*.begums.com
benh.net
*.benh.net
berachah.com
*.berachah.com
biombos.com
*.biombos.com
bloomedengardens.live
*.bloomedengardens.live
blueridgemtn.com
*.blueridgemtn.com
brawijaya.com
*.brawijaya.com
brightgroveteam.com
*.brightgroveteam.com
bubblefly.com
*.bubblefly.com
bugat.com
*.bugat.com
bumalapp.xyz
*.bumalapp.xyz
cdedolls.com
*.cdedolls.com
cuttlebug.com
*.cuttlebug.com
dataengineer.info
*.dataengineer.info
egedezone.com
*.egedezone.com
eloisa.net
*.eloisa.net
enchantmentofgardening.live
*.enchantmentofgardening.live
ewickot1232.vip
*.ewickot1232.vip
fb88.ooo
*.fb88.ooo
fitnessenthusiastclub.run
*.fitnessenthusiastclub.run
fitnesspowertrack.run
*.fitnesspowertrack.run
fountainheadofweddings.beauty
*.fountainheadofweddings.beauty
gdbt.net
*.gdbt.net
haggard.net
*.haggard.net
hairoai.com
*.hairoai.com
hearingaids830872.icu
*.hearingaids830872.icu
hellocamparimail.com
*.hellocamparimail.com
jawa.net
*.jawa.net
jennajacobs.com
*.jennajacobs.com
jinbei.net
*.jinbei.net
jloooy.xyz
*.jloooy.xyz
joincapitalvisionfilmshub.com
*.joincapitalvisionfilmshub.com
jseduandmigration.com
*.jseduandmigration.com
juriansz.com
*.juriansz.com
kwgxv.gdn
*.kwgxv.gdn
ldyqrtm.info
*.ldyqrtm.info
lkluck1688.xyz
*.lkluck1688.xyz
lushgardendesigns.xyz
*.lushgardendesigns.xyz
meinkonto-de.com
*.meinkonto-de.com
menswearworld.site
*.menswearworld.site
myfafsa.com
*.myfafsa.com
stockmarketprices.com
*.stockmarketprices.com
*.ww25.stockmarketprices.com
Other domains in certificate