Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=marijuanaacres.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 12, 2026
Valid Until
August 10, 2026
69 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F4:7B:4A:EA:4E:85:65:3A:1B:8A:96:4D:33:22:2C:03:ED:F8:8B:91:15:A3:B2:5C:0A:5B:60:98:9C:50:FB:7F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
kimblesrentals.com
*.kimblesrentals.com
*.development.kimblesrentals.com
*.m.kimblesrentals.com
507.com.au
*.507.com.au
*.www.507.com.au
etsy.baby
*.etsy.baby
*.peanutgallerybaby.etsy.baby
grocery-stores.com
*.grocery-stores.com
*.www.grocery-stores.com
*.fdtn8r.hicie.com
hicie.com
*.hicie.com
*.m.hicie.com
ilengku.cn
*.ilengku.cn
*.m.ilengku.cn
*.admin.ivica.it
*.analytics.ivica.it
*.app.ivica.it
*.backend.ivica.it
*.flowiseai.ivica.it
*.host.ivica.it
*.hostmaster.ivica.it
ivica.it
*.ivica.it
*.mail.ivica.it
*.www.ivica.it
jjfc.org
*.jjfc.org
*.m.jjfc.org
*.m.magic777k.pro
magic777k.pro
*.magic777k.pro
*.www.magic777k.pro
*.m.marijuanaacres.com
marijuanaacres.com
*.marijuanaacres.com
outlier.engineer
*.outlier.engineer
*.tl1tmp.outlier.engineer
*.328aa1eb-b61b-4e89-bd75-6e9729b359fa.reply-message0425.info
*.56b7baeb-36a4-4ed2-8495-f5a471bc8683.reply-message0425.info
*.a.reply-message0425.info
*.admin.reply-message0425.info
*.api.reply-message0425.info
*.app.reply-message0425.info
*.assets.reply-message0425.info
*.backup.reply-message0425.info
*.blog.reply-message0425.info
*.cbrhbwp.reply-message0425.info
*.dashboard.reply-message0425.info
*.dev.reply-message0425.info
*.djwhfa.reply-message0425.info
*.efxjadjwhfa.reply-message0425.info
*.mailer.reply-message0425.info
*.marketing.reply-message0425.info
*.members.reply-message0425.info
*.new.reply-message0425.info
*.p.reply-message0425.info
*.qa.reply-message0425.info
reply-message0425.info
*.reply-message0425.info
*.sms.reply-message0425.info
*.staging.reply-message0425.info
*.stg.reply-message0425.info
*.test.reply-message0425.info
*.v1.reply-message0425.info
*.web.reply-message0425.info
*.wp.reply-message0425.info
*.m.shopingnow.com
shopingnow.com
*.shopingnow.com
*.co.signministries.org
signministries.org
*.signministries.org
*.pvlnqu.wesellcars.info
wesellcars.info
*.wesellcars.info
*.www.wesellcars.info
*.itemell.youtlook.com
*.mell.youtlook.com
*.temell.youtlook.com
*.x.youtlook.com
youtlook.com
*.youtlook.com
Other domains in certificate