Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=cannatemple.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 11, 2026
Valid Until
August 09, 2026
77 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B2:26:05:A6:D9:BC:CE:4B:82:9A:D6:A5:14:5D:8B:30:BC:72:62:7B:B3:E9:35:2B:C0:C2:95:FF:B8:78:7E:4D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
75 domains
seabrease.com
*.seabrease.com
*.demo.seabrease.com
*.dev.seabrease.com
*.fashion.seabrease.com
*.newsite.seabrease.com
*.project.seabrease.com
*.wordpress.seabrease.com
*.ww16.seabrease.com
*.ww25.seabrease.com
bittertexan.org
*.bittertexan.org
boatworld.com.au
*.boatworld.com.au
*.ww25.boatworld.com.au
*.ww38.boatworld.com.au
cannatemple.com
*.cannatemple.com
*.www.cannatemple.com
changeup.me
*.changeup.me
cryptowalletinsurance.com
*.cryptowalletinsurance.com
cyub.cc
*.cyub.cc
ezybets.bet
*.ezybets.bet
*.insight.ezybets.bet
*.ww25.ezybets.bet
fomosmarttech.com
*.fomosmarttech.com
gainweight.com.au
*.gainweight.com.au
*.ww25.gainweight.com.au
hasangold.com
*.hasangold.com
hengqinrealty.com
*.hengqinrealty.com
hog.me
*.hog.me
ifsf.tn
*.ifsf.tn
itwtm.gdn
*.itwtm.gdn
lkzxa.gdn
*.lkzxa.gdn
local-solar-panel-companies-my-city.sbs
*.local-solar-panel-companies-my-city.sbs
lybsawtuquxlgr1.com
*.lybsawtuquxlgr1.com
merchbitcoin.com
*.merchbitcoin.com
metis.bio
*.metis.bio
modperth.com
*.modperth.com
mrworldpremieree.one
*.mrworldpremieree.one
nissei.cn
*.nissei.cn
no1ideas.com
*.no1ideas.com
oceanvector.com
*.oceanvector.com
spons.co.uk
*.spons.co.uk
*.ww38.spons.co.uk
*.money.universitytomorrow.com
universitytomorrow.com
*.universitytomorrow.com
*.ww38.universitytomorrow.com
virtusplay-cv.com
*.virtusplay-cv.com
virtusplay-kr.com
*.virtusplay-kr.com
Other domains in certificate