Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=pireusbank.gr
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 04, 2026
Valid Until
May 05, 2026
69 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BB:7A:D1:34:A0:39:65:C0:CF:D7:F2:FF:67:C5:E4:C0:3E:C6:62:BD:FE:C6:7F:74:4C:86:3C:EE:DB:FC:DD:01
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
pinkmaga.com
*.pinkmaga.com
collegehealth-e.org
*.collegehealth-e.org
commercial-painting-mb7.click
*.commercial-painting-mb7.click
contenthelpful.com
*.contenthelpful.com
contenutidigitali.it
*.contenutidigitali.it
contestato.it
*.contestato.it
coups.org
*.coups.org
cranefinance-online.com
*.cranefinance-online.com
crowdroaming.it
*.crowdroaming.it
cruel-intentions.net
*.cruel-intentions.net
cryptlabs.buzz
*.cryptlabs.buzz
cryptoedgeoptions.com
*.cryptoedgeoptions.com
cryptofrog.io
*.cryptofrog.io
passionburgtop.com
*.passionburgtop.com
pastarch.buzz
*.pastarch.buzz
pastidapatduitjp.quest
*.pastidapatduitjp.quest
patio-contractors-mx-agent.click
*.patio-contractors-mx-agent.click
patrimoine.it
*.patrimoine.it
patriotweed.com
*.patriotweed.com
pawsexpres.org
*.pawsexpres.org
pck88amp.click
*.pck88amp.click
pensionperks.com
*.pensionperks.com
peoplefripe.com
*.peoplefripe.com
peoplelearn.it
*.peoplelearn.it
pic2k.com
*.pic2k.com
pickledpigproductions.com
*.pickledpigproductions.com
pij.biz
*.pij.biz
pikad2.shop
*.pikad2.shop
pimpmymotorcycle.com
*.pimpmymotorcycle.com
pinnaclemen.com
*.pinnaclemen.com
pinometry.com
*.pinometry.com
pioiwtjbhloey.com
*.pioiwtjbhloey.com
pirateplayer.com
*.pirateplayer.com
pireusbank.gr
*.pireusbank.gr
pizzaandpbs.com
*.pizzaandpbs.com
plastic-belts-294546147.click
*.plastic-belts-294546147.click
plastic-processing-243327716.click
*.plastic-processing-243327716.click
play-ace-keep.xyz
*.play-ace-keep.xyz
play-beta-fury.xyz
*.play-beta-fury.xyz
play-comet-sphere.xyz
*.play-comet-sphere.xyz
play-ember-voyage.xyz
*.play-ember-voyage.xyz
play-obsidian-empire.xyz
*.play-obsidian-empire.xyz
play-obsidian-labyrinth.xyz
*.play-obsidian-labyrinth.xyz
play-phoenix-plaza.xyz
*.play-phoenix-plaza.xyz
play-prize-faction.xyz
*.play-prize-faction.xyz
Other domains in certificate