Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=pndana.store
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 03, 2026
Valid Until
May 04, 2026
79 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
15:58:9D:EB:1D:E2:CF:93:36:5F:67:AC:54:DD:54:31:8B:69:38:0B:F9:7C:6E:17:C7:EE:BB:8F:96:89:32:E5
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
depetrillo.com
*.depetrillo.com
*.dev.depetrillo.com
*.hostmaster.depetrillo.com
*.admin.archivebat.com
*.alpha.archivebat.com
*.analytic.archivebat.com
*.api.archivebat.com
*.app.archivebat.com
*.ar.archivebat.com
archivebat.com
*.archivebat.com
*.argo.archivebat.com
*.backend.archivebat.com
*.bi.archivebat.com
*.dash.archivebat.com
*.dashboard.archivebat.com
*.dashs.archivebat.com
*.data.archivebat.com
*.demo.archivebat.com
*.dev.archivebat.com
*.emv1.archivebat.com
*.notexistsadmin.archivebat.com
*.notexistsapi.archivebat.com
*.notexistsar.archivebat.com
*.notexistsbackend.archivebat.com
*.notexistsdemo.archivebat.com
*.notexistsstaging.archivebat.com
*.pipeline.archivebat.com
*.redash.archivebat.com
*.remote.archivebat.com
*.staging.archivebat.com
*.wjpegapi.archivebat.com
*.workflow.archivebat.com
dian-dian.com
*.dian-dian.com
*.ww5.dian-dian.com
*.assets.doanh.com
doanh.com
*.doanh.com
doctolib-indemnisation.co
*.doctolib-indemnisation.co
*.hostmaster.doctolib-indemnisation.co
*.cpptvnews.eyenewskh.com
eyenewskh.com
*.eyenewskh.com
*.eyenewskh.eyenewskh.com
*.fbitvonlines.eyenewskh.com
*.kessara.eyenewskh.com
*.khmersokrith-media.eyenewskh.com
*.mohachun-daily.eyenewskh.com
*.phnomkravanhpost.eyenewskh.com
*.rsplowell10.eyenewskh.com
*.xoso28-club.eyenewskh.com
*.zoo666-club.eyenewskh.com
*.hkdentalfloss.huence.com
huence.com
*.huence.com
*.vgas.huence.com
*.anyconnect.klavdia.com
klavdia.com
*.klavdia.com
*.data.lkoe.com
*.jwc.lkoe.com
lkoe.com
*.lkoe.com
*.ww25.lkoe.com
*.blog.peiwo.com
peiwo.com
*.peiwo.com
pndana.store
*.pndana.store
*.assets.unidaddeverificacion.com
*.blog.unidaddeverificacion.com
*.hostmaster.unidaddeverificacion.com
*.mx.unidaddeverificacion.com
*.sitemap.unidaddeverificacion.com
*.sitemaps.unidaddeverificacion.com
unidaddeverificacion.com
*.unidaddeverificacion.com
*.ww25.unidaddeverificacion.com
*.ww38.unidaddeverificacion.com
*.members.vedasi.com
vedasi.com
*.vedasi.com
*.mip.yunshanqiandie.com
*.ww25.yunshanqiandie.com
yunshanqiandie.com
*.yunshanqiandie.com
Other domains in certificate