Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=ferienreisebericht.de
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 14, 2026
Valid Until
April 14, 2026
47 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
37:5F:0B:29:EB:B3:C7:F9:49:3A:90:FC:D6:D5:43:78:63:8B:4A:36:12:A0:20:79:60:27:02:F3:5C:2C:AB:A1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
dotauditors.com
*.dotauditors.com
*.hostmaster.dotauditors.com
2030.site
*.2030.site
aewiu.com
*.aewiu.com
bloxybet.org
*.bloxybet.org
citizenserv.com
*.citizenserv.com
*.dev.citizenserv.com
*.staging.citizenserv.com
*.www2.citizenserv.com
*.www3.citizenserv.com
click3lwwages.buzz
*.click3lwwages.buzz
computerstore.com.au
*.computerstore.com.au
*.cpanel.computerstore.com.au
debianfastweb.it
*.debianfastweb.it
*.it.debianfastweb.it
distinguisheddevices.com
*.distinguisheddevices.com
*.exclusive.distinguisheddevices.com
*.mail.distinguisheddevices.com
dotbegin.com
*.dotbegin.com
*.hostmaster.dotbegin.com
*.pipeline.dotbegin.com
durgasricrackers.com
*.durgasricrackers.com
eltarascoburritos.com
*.eltarascoburritos.com
*.ww38.eltarascoburritos.com
ferienreisebericht.de
*.ferienreisebericht.de
filercr.com
*.filercr.com
*.random.filercr.com
grannysluts.com
*.grannysluts.com
*.mail.grannysluts.com
htkconsulting.com
*.htkconsulting.com
*.random.htkconsulting.com
*.ci.huare.us
huare.us
*.huare.us
*.random.huare.us
ijamincraft.com
*.ijamincraft.com
infowebs.de
*.infowebs.de
katex.vip
*.katex.vip
m4a.es
*.m4a.es
*.hdfcfund.mmmsample2.xyz
mmmsample2.xyz
*.mmmsample2.xyz
reatheory.org
*.reatheory.org
*.ww.reatheory.org
*.ww1.reatheory.org
rtbmintads3.site
*.rtbmintads3.site
saoclub.mobi
*.saoclub.mobi
slinkcomfort.com
*.slinkcomfort.com
slinkglam.com
*.slinkglam.com
slinkluxe.com
*.slinkluxe.com
slinksociety.com
*.slinksociety.com
*.random.tradition.com.au
tradition.com.au
*.tradition.com.au
*.click.truongmod.xyz
*.net.truongmod.xyz
*.pro.truongmod.xyz
truongmod.xyz
*.truongmod.xyz
*.ww25.truongmod.xyz
*.hostmaster.ubitrex.com
ubitrex.com
*.ubitrex.com
Other domains in certificate