Open
Cached
·
just now
89/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=extranet.bmaba.org.uk
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 26, 2026
Valid Until
April 26, 2026
65 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0E:E7:78:A8:08:79:56:D8:8E:A6:A8:3B:D9:82:68:9C:BB:2D:45:D0:05:3F:68:D0:D6:A6:46:CC:2E:65:1F:14
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Excellent
max-age=64072000; includeSubDomains; preload
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Configured
(Restricts certificate issuance)
Current Issuer
Authorized
(Matches CAA policy)
Authorized CAs
Recommendations
- • Consider using critical flag (flags=128) for stricter CAA enforcement
- • Consider adding 'iodef' records to receive notifications about unauthorized certificate issuance attempts
- • Consider adding 'issuewild' records to control wildcard certificate issuance
Subject Alternative Names
61 domains
connect.elbone.de
connect.adventori.com
connect.agrconsulting.it
connect.altotrades.co.uk
workspace.anti-static.be
connect.arkars.in
zadaci.baldinistudio.hr
extranet.bmaba.org.uk
connect.burgerme.nl
connect.cgccouncil.uk
intranet.codafish.net
testkunde.conapps.de
network.connectingcolours.com
intranet.conversationalcitizen.com
office.cyme.io
intranet.deutscher-bauservice.de
connect.dfrnt.com
space.di-ia.de
connect.digitalredesign.co.uk
connect.edana.org
intranet.ekapro.it
zoho.encoretheatrecompany.co.uk
connect.essor-asbl.be
connect.ethos.ltd
intranet.evokestudios.io
home.fideltour.com
intranet.finkzeisig.de
connect.founderblocks.io
connect.glasford.it
connect.janium.com
connect.keytax.net
connect.kleeberg.me
intranet.kundenanfrage.net
connect.lctsoftware.com
team.livestudio.ro
connect.ahe.lodz.pl
connect.lunartech.link
connect.m-3.com
intranet.medias-coms.ch
admin.meldebriefkasten.de
impact.mindful-innovation.org
connect.mortgageap.co.uk
www.mxvk-conguu.de
connect.navigationwm.uk
connect.odit.digital
workspace.omtg.hu
connect.plaincode.nl
intranet.primarywellbeing.uk
connect.spaarkly.com
connect.sparq360.com
connect.surfaceperformance.com
intranet.teqz.nl
network.thetradeinstitute.co.uk
community.ukhypnosis.com
intranet.veetee.com
connect.wearebrisk.com
connect.web-netz.de
connect.weigerding.com
connect.wit-software.com
intranet.xbodyworld.com
intranet.yorxs.de
Other domains in certificate