Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=strom.design
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 22, 2026
Valid Until
May 23, 2026
87 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
18:3B:DB:15:12:F3:38:C3:BB:13:84:7B:8E:D5:D7:1C:07:AE:8B:90:58:F5:5B:EC:68:C4:BA:EB:C1:4E:62:23
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
dinardectives.com
*.dinardectives.com
afcconference.com
*.afcconference.com
arremato.com
*.arremato.com
*.s12.arremato.com
barquito.com
*.barquito.com
*.development.barquito.com
*.forum.barquito.com
*.ww25.barquito.com
*.www.barquito.com
bikiniposter.com
*.bikiniposter.com
*.dsp.bikiniposter.com
*.games.bikiniposter.com
*.mx.bikiniposter.com
*.mx2.bikiniposter.com
*.scm.bikiniposter.com
*.tr.bikiniposter.com
*.users.bikiniposter.com
*.wiki.bikiniposter.com
desktoptelegram.org
*.desktoptelegram.org
*.random.desktoptelegram.org
ewq3ed.cfd
*.ewq3ed.cfd
*.ww17.ewq3ed.cfd
*.api.jav88.net
*.dc-44774653.jav88.net
*.hostmaster.jav88.net
jav88.net
*.jav88.net
*.smtp.jav88.net
*.test.jav88.net
*.ww1.jav88.net
*.ww12.jav88.net
*.ww38.jav88.net
*.ww88.jav88.net
*.www.jav88.net
*.m.marketsglobally.com
marketsglobally.com
*.marketsglobally.com
*.fy.mygreatlearning.co
mygreatlearning.co
*.mygreatlearning.co
*.olympus.mygreatlearning.co
*.olympus1.mygreatlearning.co
*.random.mygreatlearning.co
*.ww38.mygreatlearning.co
*.api.ocloo.com
*.garagecentraalaruba.ocloo.com
*.garagecentralaruba.ocloo.com
*.go.ocloo.com
ocloo.com
*.ocloo.com
*.seltourperu.ocloo.com
*.ww16.ocloo.com
*.ww25.ocloo.com
*.ww38.ocloo.com
*.hostmaster.rafaelchaves.com
rafaelchaves.com
*.rafaelchaves.com
rej.de
*.rej.de
*.ww25.rej.de
seniorscaravaninsurance.com.au
*.seniorscaravaninsurance.com.au
*.mx.splendo.it
splendo.it
*.splendo.it
*.visual.splendo.it
*.enercityweb.strom.design
strom.design
*.strom.design
*.eeec9792-6309-4690-8c09-f571ef16a792.swissstreetpro.com
swissstreetpro.com
*.swissstreetpro.com
*.www.swissstreetpro.com
*.blog.uxbynarender.design
uxbynarender.design
*.uxbynarender.design
*.130.wsvpn.com
*.38673.wsvpn.com
*.581.wsvpn.com
*.i4gsk.wsvpn.com
wsvpn.com
*.wsvpn.com
Other domains in certificate