76/100 SECURITY SCORE

Certificate Information

Subject
CN=drazzy.biz
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 07, 2026
Valid Until
April 07, 2026 44 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
EA:85:77:00:0D:E3:9D:FD:55:43:FA:82:E4:28:D2:A1:FC:84:F2:C1:9A:E0:82:98:CF:43:4F:C7:69:BF:AA:27
Alternative Names

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
roundbutts.com *.roundbutts.com *.b.roundbutts.com *.e.roundbutts.com *.fwallow.roundbutts.com *.home.roundbutts.com *.like.roundbutts.com *.random.roundbutts.com *.xxx.roundbutts.com

Other domains in certificate

*.analytics.classicandcar.co.uk *.backend.classicandcar.co.uk classicandcar.co.uk *.classicandcar.co.uk *.data.classicandcar.co.uk *.dev.classicandcar.co.uk *.intelligence.classicandcar.co.uk *.notexistsresaltomag.classicandcar.co.uk *.resaltomag.classicandcar.co.uk *.staging.classicandcar.co.uk *.superset.classicandcar.co.uk
diya.ltd *.diya.ltd
drazzy.biz *.drazzy.biz *.home.drazzy.biz *.m.drazzy.biz *.ww38.drazzy.biz
fpt.solutions *.fpt.solutions
gdsnpx.com *.gdsnpx.com
*.bigcartel.heathergabel.com heathergabel.com *.heathergabel.com
*.core.hindiposters.com hindiposters.com *.hindiposters.com *.media.hindiposters.com *.test.hindiposters.com
kotly-teplo-metalfach.online *.kotly-teplo-metalfach.online
kreative-scroll.eu *.kreative-scroll.eu
monro-hack.site *.monro-hack.site
pointingdogs.com *.pointingdogs.com *.www.pointingdogs.com
pxilok.ru *.pxilok.ru
rbe.bio *.rbe.bio
skulls.com.au *.skulls.com.au
solis.au *.solis.au *.ww38.solis.au
*.admin.thecesho.com *.api.thecesho.com *.app.thecesho.com *.argo.thecesho.com *.backend.thecesho.com *.c21wilbur.thecesho.com *.chart.thecesho.com *.dashboard.thecesho.com *.dashboards.thecesho.com *.data.thecesho.com *.forecast.thecesho.com *.hostmaster.thecesho.com *.intelligence.thecesho.com *.intranet.thecesho.com *.kwlipsey.thecesho.com *.mail.thecesho.com *.metric.thecesho.com *.metrics.thecesho.com *.notexistsapi.thecesho.com *.notexistsapp.thecesho.com *.notexistsbackend.thecesho.com *.notexistskwlipsey.thecesho.com *.notexistsstaging.thecesho.com *.staging.thecesho.com *.superset.thecesho.com thecesho.com *.thecesho.com *.www.thecesho.com
*.random.wlamart.ca *.survey.wlamart.ca wlamart.ca *.wlamart.ca *.ww25.wlamart.ca