Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=prnicipal.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 23, 2026
Valid Until
July 22, 2026
56 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
96:73:A6:91:7B:73:1B:68:29:83:38:A9:EB:05:59:6D:D2:7D:48:14:8B:9D:1C:4A:50:3D:D8:AF:D4:A1:D6:47
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
gettio.com
*.gettio.com
*.smallbusiness.gettio.com
*.07.2027.au
2027.au
*.2027.au
*.ildcard.2027.au
*.promo.2027.au
*.493d8375-9829-4fa7-b922-490b3b7772b3.66188.plus
66188.plus
*.66188.plus
*.admin.66188.plus
*.ae6be8bb-96f5-4c26-9053-8764e3eb797f.66188.plus
*.api.66188.plus
*.app.66188.plus
*.dev.66188.plus
*.intranet.66188.plus
*.link.66188.plus
*.members.66188.plus
*.store.66188.plus
*.test.66188.plus
addresscenter.org
*.addresscenter.org
binkkom.com
*.binkkom.com
blacktiegowns.com
*.blacktiegowns.com
*.48sqvzx0ah.elascription.net
*.docs.elascription.net
elascription.net
*.elascription.net
*.nowydvxcmg.elascription.net
*.ojbousq2zi.elascription.net
gfitcardmall.com
*.gfitcardmall.com
*.mcgift.gfitcardmall.com
*.mygift.gfitcardmall.com
*.random.gfitcardmall.com
*.community.golstat.com
golstat.com
*.golstat.com
*.pe.golstat.com
*.sms.golstat.com
*.ww35.golstat.com
h2v.online
*.h2v.online
*.kcr.kurita.co
kurita.co
*.kurita.co
leakeddata.cc
*.leakeddata.cc
*.w.leakeddata.cc
*.ww16.leakeddata.cc
*.ww25.leakeddata.cc
*.ww38.leakeddata.cc
midnorthmummas.com.au
*.midnorthmummas.com.au
personalpaintbynumbers.com
*.personalpaintbynumbers.com
prnicipal.com
*.prnicipal.com
*.glcw.pwrshow.com
pwrshow.com
*.pwrshow.com
*.mx.readtomelv.com
readtomelv.com
*.readtomelv.com
*.ww17.readtomelv.com
*.www.readtomelv.com
*.bot.schoolhacks.net
schoolhacks.net
*.schoolhacks.net
skyworksas.com
*.skyworksas.com
*.ww25.skyworksas.com
*.random.unitysolutions.co
unitysolutions.co
*.unitysolutions.co
*.oneview.virginplu.ca
*.pfo-src-cdn.virginplu.ca
virginplu.ca
*.virginplu.ca
weddingheadpiece.net
*.weddingheadpiece.net
*.ww25.weddingheadpiece.net
*.ww38.weddingheadpiece.net
wordtracker.com.au
*.wordtracker.com.au
*.ww17.wordtracker.com.au
Other domains in certificate