Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=biospherehotels.org
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
May 31, 2026
Valid Until
August 29, 2026
69 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C6:2F:E2:D9:2A:AA:91:E2:82:A8:74:A7:0C:DB:4B:5B:EB:ED:20:FF:0E:78:8B:9A:60:25:8F:6F:7F:53:C2:82
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
result.bio
*.result.bio
*.auth.result.bio
*.dash.result.bio
*.data.result.bio
*.preprod.result.bio
*.tools-bi.result.bio
3demarket.net
*.3demarket.net
*.ww25.3demarket.net
*.1w4.adspin.top
*.2d8a7c30-cda8-48e7-84ee-ef8d5f648cf0.adspin.top
*.95lw2.adspin.top
*.96c54.adspin.top
*.a0bde0cf-9bc8-4476-9be7-bef92e118749.adspin.top
*.admin.adspin.top
adspin.top
*.adspin.top
*.api.adspin.top
*.app.adspin.top
*.assets.adspin.top
*.b54zj.adspin.top
*.b5hyr.adspin.top
*.b6fa3575-279d-4aa3-a245-81149fc37ddf.adspin.top
*.chil4.adspin.top
*.chil5.adspin.top
*.chil6.adspin.top
*.cs1.adspin.top
*.d.adspin.top
*.dev.adspin.top
*.dn930.adspin.top
*.dwij7.adspin.top
*.ebwif.adspin.top
*.fec0cc57-70b8-47bc-8097-3e014e7be0bc.adspin.top
*.g22y8.adspin.top
*.he00g.adspin.top
*.hgsq5.adspin.top
*.igqlc.adspin.top
*.ip4i2.adspin.top
*.kp5po.adspin.top
*.l2aa8.adspin.top
*.l8kqx.adspin.top
*.mta-sts.adspin.top
*.oahlw.adspin.top
*.osc36.adspin.top
*.qakt3.adspin.top
*.ques8.adspin.top
*.rczhl.adspin.top
*.rnyzj.adspin.top
*.tgtvt2.adspin.top
*.tudqgqakt3.adspin.top
*.tvt2.adspin.top
*.tzygd.adspin.top
*.vizaseq.adspin.top
*.wdktzvpn.adspin.top
*.wsct4.adspin.top
*.www.adspin.top
*.y04uw.adspin.top
*.yhue2.adspin.top
biospherehotels.org
*.biospherehotels.org
*.ww25.biospherehotels.org
*.ww38.biospherehotels.org
*.api.coalactivatedcarbon.com
*.app.coalactivatedcarbon.com
*.arquivos.coalactivatedcarbon.com
*.auth.coalactivatedcarbon.com
coalactivatedcarbon.com
*.coalactivatedcarbon.com
*.dev.coalactivatedcarbon.com
*.finance.coalactivatedcarbon.com
*.ltbzqarquivos.coalactivatedcarbon.com
*.rdp.coalactivatedcarbon.com
*.rds.coalactivatedcarbon.com
*.remote.coalactivatedcarbon.com
*.shop.coalactivatedcarbon.com
*.sitemaps.coalactivatedcarbon.com
*.vpn.coalactivatedcarbon.com
*.wwww.coalactivatedcarbon.com
mydovepos.com
*.mydovepos.com
*.www.mydovepos.com
*.mail.yellgh.com
*.mail1.yellgh.com
*.rdg.yellgh.com
*.reporting.yellgh.com
*.toulouse.yellgh.com
*.web.yellgh.com
yellgh.com
*.yellgh.com
Other domains in certificate