Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=creditomas.es
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
December 16, 2025
Valid Until
March 16, 2026
30 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
14:CF:3D:4B:F4:F0:28:F5:62:BA:0F:7D:A9:67:A4:32:6B:A9:81:B2:DA:62:AA:FB:03:94:8E:74:9D:D9:86:DB
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
folder.org
*.folder.org
*.collini.folder.org
*.enjoy.folder.org
appraisal.es
*.appraisal.es
*.mx.appraisal.es
appsdeveloperswebsites.com
*.appsdeveloperswebsites.com
*.login.appsdeveloperswebsites.com
*.api.creditomas.es
*.comune.creditomas.es
creditomas.es
*.creditomas.es
*.email.creditomas.es
*.ww11.creditomas.es
*.ww25.creditomas.es
*.www.creditomas.es
dotcourt.com
*.dotcourt.com
*.hostmaster.dotcourt.com
froogo.com
*.froogo.com
goochiebrothers.com
*.goochiebrothers.com
*.random.goochiebrothers.com
*.catalog.huha.net
*.goto.huha.net
huha.net
*.huha.net
*.service.huha.net
*.tw.huha.net
*.ww38.huha.net
lbguides.com
*.lbguides.com
*.hostmaster.listoy.com
listoy.com
*.listoy.com
littlelovelyleaders.com
*.littlelovelyleaders.com
*.random.littlelovelyleaders.com
mann4bassetlaw.com
*.mann4bassetlaw.com
mybestwap.com
*.mybestwap.com
*.random.mybestwap.com
*.ww17.mybestwap.com
*.bbs.mysagamobile.com
*.dns-bbs.mysagamobile.com
mysagamobile.com
*.mysagamobile.com
*.ww25.mysagamobile.com
*.ww38.mysagamobile.com
mytaskpay.com
*.mytaskpay.com
*.random.mytaskpay.com
*.ws.mytaskpay.com
*.wss.mytaskpay.com
*.ww38.mytaskpay.com
samsjourneys.com
*.samsjourneys.com
sherbournehotel.com
*.sherbournehotel.com
*.ww17.sherbournehotel.com
storgetreasures.com
*.storgetreasures.com
thehairstyle.com
*.thehairstyle.com
*.random.thetravelingbarbers.org
thetravelingbarbers.org
*.thetravelingbarbers.org
*.ww38.thetravelingbarbers.org
tplinwifi.net
*.tplinwifi.net
*.random.travelvis.xyz
travelvis.xyz
*.travelvis.xyz
u-w.de
*.u-w.de
vincentlamouroux.net
*.vincentlamouroux.net
we3school.com
*.we3school.com
wilegionpost89.org
*.wilegionpost89.org
xn--kompletlsungen-2pb.de
*.xn--kompletlsungen-2pb.de
yamada-park.com
*.yamada-park.com
Other domains in certificate