Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=bivivo.com
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
June 06, 2026
Valid Until
September 04, 2026
71 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E0:E3:A5:5D:87:22:66:C1:12:73:F8:17:8C:2B:F0:38:73:F6:1F:4B:BA:83:9F:84:AA:45:6F:85:A3:53:EA:D5
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
fstmtx.com
*.fstmtx.com
*.hlv.fstmtx.com
*.zvobothing.fstmtx.com
*.25.695gg.com
695gg.com
*.695gg.com
*.ww38.695gg.com
beinternetawsome.com
*.beinternetawsome.com
*.ww16.beinternetawsome.com
*.ww25.beinternetawsome.com
*.ww38.beinternetawsome.com
bivivo.com
*.bivivo.com
*.bsc-dataseed.bivivo.com
*.sitemap.bivivo.com
*.b6e.cpf34.com
cpf34.com
*.cpf34.com
*.forms.cpf34.com
*.mode.cpf34.com
*.mx.cpf34.com
*.newsletter.cpf34.com
*.ww17.cpf34.com
*.ww38.cpf34.com
*.demo.dunkinbaskrunsonyou.com
*.dev.dunkinbaskrunsonyou.com
dunkinbaskrunsonyou.com
*.dunkinbaskrunsonyou.com
*.m.dunkinbaskrunsonyou.com
*.magento.dunkinbaskrunsonyou.com
*.old.dunkinbaskrunsonyou.com
fifeflyingclub.co.uk
*.fifeflyingclub.co.uk
finaloffer.au
*.finaloffer.au
fitnesswithnessa.shop
*.fitnesswithnessa.shop
*.rustore.fitnesswithnessa.shop
flower-connexion.co.uk
*.flower-connexion.co.uk
*.m.flower-connexion.co.uk
focus-actualite.info
*.focus-actualite.info
*.net.focus-actualite.info
*.admin.friendsofdemocracy.net
*.efn.friendsofdemocracy.net
friendsofdemocracy.net
*.friendsofdemocracy.net
*.haithamhandiraq.friendsofdemocracy.net
*.hassanomar75.friendsofdemocracy.net
*.missannewsnetwork.friendsofdemocracy.net
*.najaf.friendsofdemocracy.net
*.sabah.friendsofdemocracy.net
*.sabahalzubeidi.friendsofdemocracy.net
*.scrs.friendsofdemocracy.net
groomsportgolfcentre.co.uk
*.groomsportgolfcentre.co.uk
*.16nfnk.itlawedgeup.com
itlawedgeup.com
*.itlawedgeup.com
*.iohlzww43.missoulahomes.net
missoulahomes.net
*.missoulahomes.net
*.ww38.missoulahomes.net
*.zohjxmail.missoulahomes.net
processingpaydpt.com
*.processingpaydpt.com
*.calcul-de-lindice-de-loyer.propelleap.cfd
*.gerrit-how-to-merge.propelleap.cfd
*.getattr-loader-configdatasetname.propelleap.cfd
*.hirens-boot-cd-download-portugues-iso.propelleap.cfd
propelleap.cfd
*.propelleap.cfd
*.real-grass-cutting-incremental.propelleap.cfd
*.reservdelar-slapvagn-knott.propelleap.cfd
*.zhz-actueel-facebook.propelleap.cfd
*.aia.us-visa-info.com
*.aif.us-visa-info.com
*.ais.us-visa-info.com
*.alpha.us-visa-info.com
*.es.us-visa-info.com
*.gallery.us-visa-info.com
*.germany.us-visa-info.com
*.guam.us-visa-info.com
us-visa-info.com
*.us-visa-info.com
*.ww2.us-visa-info.com
Other domains in certificate