Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=vocm.ca
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 13, 2026
Valid Until
August 11, 2026
81 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4A:8E:A7:35:AB:D5:CF:37:BA:FC:B8:C2:C0:FC:38:22:85:07:B8:99:8E:67:F9:2E:5E:BA:65:15:C3:32:04:38
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
toolhawk.business
*.toolhawk.business
*.ab.toolhawk.business
*.boxberry.toolhawk.business
*.catalog.toolhawk.business
*.cloud.toolhawk.business
*.customers.toolhawk.business
*.guest.toolhawk.business
*.imail.toolhawk.business
*.web1.toolhawk.business
0epk2hz1.xyz
*.0epk2hz1.xyz
*.r3igd.0epk2hz1.xyz
boston138resmi.com
*.boston138resmi.com
bzg65.icu
*.bzg65.icu
clinical-trials-fame-723.sbs
*.clinical-trials-fame-723.sbs
crapcleaner.com
*.crapcleaner.com
*.ww25.crapcleaner.com
displacedfamilies.org
*.displacedfamilies.org
drones-mk.click
*.drones-mk.click
efbmby73w9.world
*.efbmby73w9.world
elitelegend733.info
*.elitelegend733.info
greendays.it
*.greendays.it
*.notexiststechnica.greendays.it
*.owa.greendays.it
*.technica.greendays.it
lhuecdesyeeal.onl
*.lhuecdesyeeal.onl
mamont.co
*.mamont.co
*.mx.mamont.co
neoky.shop
*.neoky.shop
nooncg.shop
*.nooncg.shop
notlon.blog
*.notlon.blog
*.api.oceangrove.net
*.client.oceangrove.net
oceangrove.net
*.oceangrove.net
*.remote.oceangrove.net
*.www.oceangrove.net
ocoa.co
*.ocoa.co
officialwebolutions.com
*.officialwebolutions.com
onetieroutreachhub.com
*.onetieroutreachhub.com
pulseoftheday.xyz
*.pulseoftheday.xyz
qogima.pro
*.qogima.pro
seamstress-jobs-678406.sbs
*.seamstress-jobs-678406.sbs
security-jobs-0d9x1o9g7h2.sbs
*.security-jobs-0d9x1o9g7h2.sbs
*.7cfgfp.skillsyncers.online
skillsyncers.online
*.skillsyncers.online
slx5su.cyou
*.slx5su.cyou
smalldemand.com
*.smalldemand.com
*.dc-79591100606f.viralwala.com
*.hostmaster.viralwala.com
*.m.viralwala.com
*.mail.viralwala.com
*.pop3.viralwala.com
viralwala.com
*.viralwala.com
vocm.ca
*.vocm.ca
*.vocm.vocm.ca
*.weather.vocm.ca
*.hostmaster.zoltana.com
*.m.zoltana.com
*.sitemap.zoltana.com
zoltana.com
*.zoltana.com
Other domains in certificate