Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=bolted.it
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
June 04, 2026
Valid Until
September 02, 2026
88 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
65:3A:58:FD:C5:FD:D7:EF:F0:92:A9:26:04:5B:37:03:1F:21:A0:BC:CB:18:8B:56:B1:E4:6C:EF:0F:25:5B:5C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
77 domains
boostia.site
*.boostia.site
*.02be5e9a-0822-4e5e-9f81-626678b8b5b7.boostia.site
*.aging.boostia.site
*.api.boostia.site
*.app.boostia.site
*.backup.boostia.site
*.dev.boostia.site
*.members.boostia.site
*.test.boostia.site
*.u54sot.boostia.site
*.uat.boostia.site
*.www.boostia.site
*.app.bolted.it
bolted.it
*.bolted.it
*.demo.bolted.it
*.dev.bolted.it
*.app.bookingbucket.com
bookingbucket.com
*.bookingbucket.com
*.mg.bookingbucket.com
camato.com
*.camato.com
*.connect.camato.com
*.desktopstudent.camato.com
*.intra.camato.com
*.prelogon.camato.com
*.secure.camato.com
*.secureaccess.camato.com
*.sitemap.camato.com
*.sitemaps.camato.com
*.workspace.camato.com
*.barclaya.ccard.io
ccard.io
*.ccard.io
*.jashin.ccard.io
*.le0n.ccard.io
*.warlokk28.ccard.io
*.ww25.ccard.io
*.ww38.ccard.io
*.www.ccard.io
dailydecoder.me
*.dailydecoder.me
flashstore.pro
*.flashstore.pro
*.6ycfp3.gamedegreeedu.com
gamedegreeedu.com
*.gamedegreeedu.com
io-suite.club
*.io-suite.club
*.hq.manager.systems
manager.systems
*.manager.systems
start.consulting
*.start.consulting
tournnews.xyz
*.tournnews.xyz
*.yhue2.tournnews.xyz
*.eden2monaro.treeservice.com.au
*.random.treeservice.com.au
treeservice.com.au
*.treeservice.com.au
*.ww25.treeservice.com.au
usmags.com
*.usmags.com
*.sitemaps.xn--2p1av0a.com
xn--2p1av0a.com
*.xn--2p1av0a.com
*.dev.xn--v4q31cx93dl6d.com
*.m.xn--v4q31cx93dl6d.com
*.magento.xn--v4q31cx93dl6d.com
*.old.xn--v4q31cx93dl6d.com
*.shop.xn--v4q31cx93dl6d.com
*.store.xn--v4q31cx93dl6d.com
xn--v4q31cx93dl6d.com
*.xn--v4q31cx93dl6d.com
Other domains in certificate