Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=webdesigngirl.com.au
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 24, 2026
Valid Until
May 25, 2026
88 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A2:55:F0:95:C1:98:03:12:1E:84:47:AF:E1:33:3E:A6:16:DA:C4:36:AD:33:08:A9:E9:D2:BB:5E:AD:FE:B5:96
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
hrwz.com
*.hrwz.com
*.dev.hrwz.com
ambettermerdian.com
*.ambettermerdian.com
*.mvideo.ambettermerdian.com
*.admin.cando-renovations.com
cando-renovations.com
*.cando-renovations.com
*.new.cando-renovations.com
*.webdisk.cando-renovations.com
*.wwww.cando-renovations.com
commercialaircraftsales.com
*.commercialaircraftsales.com
dreamgiveaway.co
*.dreamgiveaway.co
*.hostmaster.dreamgiveaway.co
*.ww25.dreamgiveaway.co
*.121.ersuhotel.com
*.2278tbah.ersuhotel.com
*.cadcbu.ersuhotel.com
ersuhotel.com
*.ersuhotel.com
*.igod.ersuhotel.com
*.nkz0fau.ersuhotel.com
*.tsuamb.ersuhotel.com
*.admin.fineflood.com
*.app.fineflood.com
*.dev.fineflood.com
fineflood.com
*.fineflood.com
*.www.fineflood.com
*.admin.flckrlighting.com
*.app.flckrlighting.com
*.cfybxrd.flckrlighting.com
*.cloud.flckrlighting.com
*.crm.flckrlighting.com
*.dev.flckrlighting.com
flckrlighting.com
*.flckrlighting.com
*.hostmaster.flckrlighting.com
*.kb.flckrlighting.com
*.rd.flckrlighting.com
*.rdweb.flckrlighting.com
*.test.flckrlighting.com
*.www.flckrlighting.com
hlxs88.buzz
*.hlxs88.buzz
*.ww7.hlxs88.buzz
*.admin.ileriseviye.org
*.com.ileriseviye.org
ileriseviye.org
*.ileriseviye.org
*.net.ileriseviye.org
*.org.ileriseviye.org
*.ww3.ileriseviye.org
*.admin.jackpot.land
*.api.jackpot.land
jackpot.land
*.jackpot.land
*.jenkins-sandbox.unitystamps.com
*.jenkins.unitystamps.com
unitystamps.com
*.unitystamps.com
*.ww25.unitystamps.com
*.crew.unleashthepowerwithin.com.au
*.ias.unleashthepowerwithin.com.au
*.nac.unleashthepowerwithin.com.au
*.pom.unleashthepowerwithin.com.au
*.preview.unleashthepowerwithin.com.au
*.s2.unleashthepowerwithin.com.au
*.ss.unleashthepowerwithin.com.au
*.ss20.unleashthepowerwithin.com.au
unleashthepowerwithin.com.au
*.unleashthepowerwithin.com.au
*.wm.unleashthepowerwithin.com.au
*.admin.visit-charlotte.com
*.api.visit-charlotte.com
*.app.visit-charlotte.com
*.hostmaster.visit-charlotte.com
*.news.visit-charlotte.com
*.portal.visit-charlotte.com
*.prod.visit-charlotte.com
*.support.visit-charlotte.com
*.tickets.visit-charlotte.com
visit-charlotte.com
*.visit-charlotte.com
*.www.visit-charlotte.com
webdesigngirl.com.au
*.webdesigngirl.com.au
Other domains in certificate