Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=pastor.com.au
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 14, 2026
Valid Until
August 12, 2026
88 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B6:54:51:10:DB:AA:D6:24:16:D9:6C:8B:EE:2B:54:D6:00:D7:E1:6A:F5:47:E4:82:CE:34:07:04:07:B8:D2:27
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
passerbys.com
*.passerbys.com
*.blog.passerbys.com
*.com.passerbys.com
*.dev.passerbys.com
*.discount.passerbys.com
*.nepali-tours.passerbys.com
*.np.passerbys.com
*.passerby.passerbys.com
*.tech.passerbys.com
balloon-letter-guy-glitch.me
*.balloon-letter-guy-glitch.me
*.ww1.balloon-letter-guy-glitch.me
*.ww16.balloon-letter-guy-glitch.me
bridalshops.com.au
*.bridalshops.com.au
*.ww25.bridalshops.com.au
chicagocornebenefits.com
*.chicagocornebenefits.com
*.ai.coimcast.net
*.albuq.coimcast.net
*.alpha.coimcast.net
*.atl1.coimcast.net
*.autodiscover.coimcast.net
*.bi.coimcast.net
*.business.coimcast.net
coimcast.net
*.coimcast.net
*.demo.coimcast.net
*.fiberartnow.coimcast.net
*.jenkins.coimcast.net
*.mail11.coimcast.net
*.mercury.coimcast.net
*.mx.coimcast.net
*.staging.coimcast.net
*.sz.coimcast.net
*.ww1.coimcast.net
*.ww25.coimcast.net
*.d.forcevantagelaunch.com
forcevantagelaunch.com
*.forcevantagelaunch.com
*.gygb1oc9b8.forcevantagelaunch.com
*.mail.forcevantagelaunch.com
*.sitemaps.forcevantagelaunch.com
*.ww.forcevantagelaunch.com
*.ww1.forcevantagelaunch.com
*.ww12.forcevantagelaunch.com
*.ww99.forcevantagelaunch.com
*.dms6p7.limezyro.buzz
limezyro.buzz
*.limezyro.buzz
novcaskin.me
*.novcaskin.me
*.hbj.pastor.com.au
*.jibing.pastor.com.au
pastor.com.au
*.pastor.com.au
*.0bpwuav4lr5cjf.witnessclips.com
*.112.witnessclips.com
*.2716627442699.witnessclips.com
*.2748.witnessclips.com
*.43751383211841.witnessclips.com
*.737.witnessclips.com
*.76.witnessclips.com
*.846547512.witnessclips.com
*.868379541.witnessclips.com
*.awmjerijxgld8yul01.witnessclips.com
*.cntcmdc.witnessclips.com
*.cxcbekjmsjcbuvynfrlf.witnessclips.com
*.dip7yvnt1d6wrgwa.witnessclips.com
*.etghhutnh.witnessclips.com
*.fagb36zz.witnessclips.com
*.fhajdkaqtkyifkzuikui.witnessclips.com
*.game-15897.witnessclips.com
*.game-748355.witnessclips.com
*.gj.witnessclips.com
*.gtwo.witnessclips.com
*.ho-5.witnessclips.com
*.n3f4.witnessclips.com
*.npwlfgyvqujcyyvz.witnessclips.com
*.pvp.witnessclips.com
*.sda4v39rw8.witnessclips.com
*.sx7oe0.witnessclips.com
*.thpmmyrmemhjm6y.witnessclips.com
*.tvj.witnessclips.com
*.w1w8qu.witnessclips.com
witnessclips.com
*.witnessclips.com
*.xzfwqc.witnessclips.com
*.zqyldku-35.witnessclips.com
Other domains in certificate