Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=chopicehotels.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 17, 2026
Valid Until
May 18, 2026
84 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E8:EA:A6:BF:D4:F5:FA:F2:29:C5:8F:AB:23:81:11:52:1F:87:D7:84:AF:3F:C7:90:84:3B:20:14:93:13:EE:F5
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
cestcool.com
*.cestcool.com
*.api.cestcool.com
*.beta.cestcool.com
*.blog.cestcool.com
*.dev.cestcool.com
*.mail.cestcool.com
*.rustore.cestcool.com
*.test.cestcool.com
228b.co
*.228b.co
*.co.228b.co
accessoriperlanautica.it
*.accessoriperlanautica.it
*.cpanel.accessoriperlanautica.it
alia.cc
*.alia.cc
*.glaserit.alia.cc
*.teekayaustr.alia.cc
*.ww25.alia.cc
*.www.alia.cc
chopicehotels.com
*.chopicehotels.com
*.random.chopicehotels.com
*.ww25.chopicehotels.com
coventrydiect.com
*.coventrydiect.com
*.old.coventrydiect.com
floresfamilyrestaurants.com
*.floresfamilyrestaurants.com
*.ww1.floresfamilyrestaurants.com
*.ww38.floresfamilyrestaurants.com
freecredit.xyz
*.freecredit.xyz
futili.com
*.futili.com
*.metric.futili.com
gadps-eoptrs.net
*.gadps-eoptrs.net
illinoisveteranscare.com
*.illinoisveteranscare.com
*.insight.illinoisveteranscare.com
*.random.illinoisveteranscare.com
mink.com
*.mink.com
*.rdp.mink.com
narhale.click
*.narhale.click
*.ns2.narhale.click
*.6a148437-46e2-43f1-9917-ea5d2d70f759.pernobricar.com
*.9e9ee008-33b7-4a28-a6cc-e1312aadeaed.pernobricar.com
*.admin.pernobricar.com
*.api.pernobricar.com
*.app.pernobricar.com
*.iivgyshop.pernobricar.com
*.intranet.pernobricar.com
pernobricar.com
*.pernobricar.com
*.shop.pernobricar.com
*.vpn.pernobricar.com
*.www.pernobricar.com
*.blog.ricaricaelettricaautomobili.com
ricaricaelettricaautomobili.com
*.ricaricaelettricaautomobili.com
sagacuan.biz
*.sagacuan.biz
*.www.sagacuan.biz
*.iciotsa2022.sirg.club
sirg.club
*.sirg.club
*.jenkins.skidpig.com
skidpig.com
*.skidpig.com
stumbleguys.cyou
*.stumbleguys.cyou
*.wobblymod.stumbleguys.cyou
tavakil.com
*.tavakil.com
*.ww25.tavakil.com
*.comune.tonysmexicanfood.com
*.mail.tonysmexicanfood.com
tonysmexicanfood.com
*.tonysmexicanfood.com
*.www1.tonysmexicanfood.com
traditionalfoods.online
*.traditionalfoods.online
*.ww38.traditionalfoods.online
*.hostmaster.walamrtone.com
walamrtone.com
*.walamrtone.com
Other domains in certificate