Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=wanderschuh.net
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 24, 2026
Valid Until
May 25, 2026
88 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D6:40:B2:BF:BC:23:8C:9C:0E:D0:A7:34:2C:A6:9B:72:5E:69:22:80:66:0A:DA:12:1A:6C:B5:36:7D:48:64:AF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
apage.it
*.apage.it
*.dev.apage.it
aqabainvestmentholding.com
*.aqabainvestmentholding.com
beovexis.tech
*.beovexis.tech
*.1yme1.dubaicuan.xyz
dubaicuan.xyz
*.dubaicuan.xyz
gyemoniiosdaltion.cyou
*.gyemoniiosdaltion.cyou
*.webmail.gyemoniiosdaltion.cyou
jepq.eu
*.jepq.eu
*.zdyffgr9tv.jepq.eu
*.cpanel.magnetlime.com
*.hm.magnetlime.com
magnetlime.com
*.magnetlime.com
*.smtp.magnetlime.com
*.webdisk.magnetlime.com
*.whm.magnetlime.com
*.www.magnetlime.com
myledgerfi.work
*.myledgerfi.work
*.38221609-d05f-4101-87b0-17d23b0a814d.pohon8-bronze.com
*.3a29bcf7-e89b-4209-bd58-c5021b2c7837.pohon8-bronze.com
*.5db6c46e-4a74-4c97-b708-2b0438a91972.pohon8-bronze.com
*.7a7f0a55-2d2b-4413-9941-5999220c38dd.pohon8-bronze.com
*.851613f8-fca0-46ac-b4d1-5d54afba5c4f.pohon8-bronze.com
*.abea6a8b-6470-4a83-970f-456f7f2aed3b.pohon8-bronze.com
*.cpanel.pohon8-bronze.com
*.d15db677-5867-4604-b56c-013bd7a106fa.pohon8-bronze.com
*.ec713a99-7a1f-440b-9c63-8b04eaafaf69.pohon8-bronze.com
*.ftp.pohon8-bronze.com
pohon8-bronze.com
*.pohon8-bronze.com
*.pop.pohon8-bronze.com
*.webdisk.pohon8-bronze.com
*.webmail.pohon8-bronze.com
*.whm.pohon8-bronze.com
solardeal.com.au
*.solardeal.com.au
*.appraisal.stateaz.us
*.asbdo.stateaz.us
*.asiis.stateaz.us
*.cloud2.stateaz.us
*.eml.stateaz.us
*.ev.stateaz.us
*.exchange.stateaz.us
*.gm.stateaz.us
*.imap2.stateaz.us
*.login1.stateaz.us
*.mail01.stateaz.us
*.mx2.stateaz.us
*.pbrand.stateaz.us
*.po.stateaz.us
*.post.stateaz.us
*.posta.stateaz.us
*.rds.stateaz.us
*.remote2.stateaz.us
*.remoteapps1.stateaz.us
*.rnmccpost.stateaz.us
*.sb.stateaz.us
*.secure2.stateaz.us
*.security.stateaz.us
*.ssl.stateaz.us
stateaz.us
*.stateaz.us
*.vdi.stateaz.us
*.virtualaccess2.stateaz.us
*.vpn-portal.stateaz.us
*.vpn.stateaz.us
*.web.stateaz.us
*.web2.stateaz.us
*.workspace2.stateaz.us
*.ww1.stateaz.us
*.ww2.stateaz.us
*.ww38.stateaz.us
totalsporttek.top
*.totalsporttek.top
trackn.au
*.trackn.au
wanderschuh.net
*.wanderschuh.net
*.ww25.yourtaxes.net
*.ww38.yourtaxes.net
yourtaxes.net
*.yourtaxes.net
Other domains in certificate