Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=hon.services
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 13, 2026
Valid Until
May 14, 2026
84 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3E:00:BF:7E:51:86:EB:6A:3E:C3:9A:0B:2C:A7:84:85:59:CD:32:A9:0B:F1:26:CD:CD:5D:2A:50:86:B8:BA:2B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
flut.it
*.flut.it
*.dashboard.flut.it
alaya.eu
*.alaya.eu
*.random.alaya.eu
*.wildcard.alaya.eu
aliansalud.com
*.aliansalud.com
*.ww84.aliansalud.com
blowkeeting.com
*.blowkeeting.com
*.ww25.blowkeeting.com
*.admin.bokepjp03.com
*.api.bokepjp03.com
*.app.bokepjp03.com
bokepjp03.com
*.bokepjp03.com
*.demo.bokepjp03.com
*.dev.bokepjp03.com
*.members.bokepjp03.com
*.rds.bokepjp03.com
*.test.bokepjp03.com
brooksrunnig.com
*.brooksrunnig.com
*.rook.brooksrunnig.com
bt444.top
*.bt444.top
*.l2aa8.bt444.top
*.qpuov.bt444.top
*.rczhl.bt444.top
*.tzygd.bt444.top
*.zruod.bt444.top
cherokeewindows.com
*.cherokeewindows.com
*.mail4.cherokeewindows.com
cij.de
*.cij.de
dizona.it
*.dizona.it
dramacamp.com
*.dramacamp.com
*.www.dramacamp.com
frasp1822.de
*.frasp1822.de
hon.services
*.hon.services
*.pay.hon.services
*.api.mcgihub.net
*.backend.mcgihub.net
*.dev.mcgihub.net
mcgihub.net
*.mcgihub.net
*.staging.mcgihub.net
nashashibi.com
*.nashashibi.com
*.ww25.nashashibi.com
*.dev.plasticlinecountertops.net
*.magento.plasticlinecountertops.net
*.mail2.plasticlinecountertops.net
plasticlinecountertops.net
*.plasticlinecountertops.net
*.random.plasticlinecountertops.net
*.staging.plasticlinecountertops.net
*.test.plasticlinecountertops.net
*.ww38.plasticlinecountertops.net
*.m.quoterealty.com
quoterealty.com
*.quoterealty.com
*.m.revendeurs.com
revendeurs.com
*.revendeurs.com
*.www.revendeurs.com
*.m.sapphireresort.com
sapphireresort.com
*.sapphireresort.com
*.ww16.sapphireresort.com
*.members.smooch.com.au
smooch.com.au
*.smooch.com.au
trustfund.com.au
*.trustfund.com.au
tubecrazy.com
*.tubecrazy.com
*.random.ztv24.com
*.ww16.ztv24.com
*.www.ztv24.com
ztv24.com
*.ztv24.com
Other domains in certificate