Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=lapuma.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 01, 2026
Valid Until
May 02, 2026
73 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F8:DF:AB:3F:F6:F6:8D:8E:F5:D6:9A:95:CA:D5:04:5B:79:76:8C:29:84:28:0F:87:1B:0E:7E:AA:72:3A:6F:28
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
dambra.com
*.dambra.com
*.gateway.dambra.com
*.aa.ahfrxucs.com
*.about.ahfrxucs.com
*.access.ahfrxucs.com
*.across.ahfrxucs.com
*.act.ahfrxucs.com
*.agent.ahfrxucs.com
ahfrxucs.com
*.ahfrxucs.com
*.aim.ahfrxucs.com
*.air.ahfrxucs.com
*.airline.ahfrxucs.com
*.always.ahfrxucs.com
*.apple.ahfrxucs.com
*.application.ahfrxucs.com
*.apply.ahfrxucs.com
*.bank.ahfrxucs.com
*.block.ahfrxucs.com
*.brand.ahfrxucs.com
*.briefly.ahfrxucs.com
*.carrier.ahfrxucs.com
*.gz8d-2.ahfrxucs.com
*.h22kz3.ahfrxucs.com
*.h23dz1.ahfrxucs.com
*.h23hz2.ahfrxucs.com
*.h25gz1.ahfrxucs.com
*.h27ez1.ahfrxucs.com
*.h28az2.ahfrxucs.com
*.h295z2.ahfrxucs.com
*.h29gz2.ahfrxucs.com
*.h29vz1.ahfrxucs.com
*.h29wz2.ahfrxucs.com
*.h29wz5.ahfrxucs.com
*.h29wz6.ahfrxucs.com
*.h29yz1.ahfrxucs.com
*.h2chz1.ahfrxucs.com
*.h2qvz2.ahfrxucs.com
*.h2y7z6.ahfrxucs.com
*.h2yjz2.ahfrxucs.com
*.ht5bz1.ahfrxucs.com
*.ht66z4.ahfrxucs.com
*.htkxz1.ahfrxucs.com
*.htnyz2.ahfrxucs.com
*.huj3z2.ahfrxucs.com
*.hujbz1.ahfrxucs.com
*.hvc6z2.ahfrxucs.com
*.hve6z4.ahfrxucs.com
*.hvfvz2.ahfrxucs.com
*.hvsnz1.ahfrxucs.com
*.hvxkz1.ahfrxucs.com
*.hwa2z2.ahfrxucs.com
*.hwd7z2.ahfrxucs.com
*.hx3fz1.ahfrxucs.com
*.hx4xz2.ahfrxucs.com
*.hxcxz1.ahfrxucs.com
*.hxkhz3.ahfrxucs.com
*.hyc4z2.ahfrxucs.com
*.hyfwz1.ahfrxucs.com
*.hyt4z4.ahfrxucs.com
*.wiki.ahfrxucs.com
*.wiki5.ahfrxucs.com
*.citrix.clipmail.eu
clipmail.eu
*.clipmail.eu
*.www.clipmail.eu
cxjt0z.com
*.cxjt0z.com
*.img.lapuma.com
lapuma.com
*.lapuma.com
searchrealestate.com.au
*.searchrealestate.com.au
*.wildcard.searchrealestate.com.au
sqllyzd.xyz
*.sqllyzd.xyz
tradesmen.au
*.tradesmen.au
*.wildcard.tradesmen.au
*.3490l.vsf.com
*.3ro1wr3.vsf.com
*.caramel.vsf.com
*.chpn.vsf.com
*.iojn3.vsf.com
*.tqht6s7.vsf.com
vsf.com
*.vsf.com
*.vtnc.vsf.com
*.ww1.vsf.com
Other domains in certificate