Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=semvicio.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 07, 2026
Valid Until
July 06, 2026
44 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7D:4C:B0:87:0E:A2:FB:CC:73:E1:10:C4:6E:1C:7E:FA:89:59:E5:79:AA:F5:3D:7F:99:A6:14:CA:52:B7:D4:3C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
85 domains
webay.de
*.webay.de
*.hostmaster.webay.de
*.staging.webay.de
*.ww.webay.de
*.ww1.webay.de
*.ww11.webay.de
*.ww25.webay.de
*.ww38.webay.de
*.a.alanbikes.com
alanbikes.com
*.alanbikes.com
*.account.aurorentbank.com
aurorentbank.com
*.aurorentbank.com
client-galxe.com
*.client-galxe.com
*.comww25.client-galxe.com
*.admin.collectionmanagement.it
*.api.collectionmanagement.it
collectionmanagement.it
*.collectionmanagement.it
*.data.collectionmanagement.it
*.dev.collectionmanagement.it
*.development.collectionmanagement.it
*.forecast.collectionmanagement.it
*.preview.collectionmanagement.it
*.staging.collectionmanagement.it
*.superset.collectionmanagement.it
*.d8ace6ee-59b0-4e4f-bf06-ac638d242c97.halalamericas.com
halalamericas.com
*.halalamericas.com
*.2d2c4d7f-ea8b-4e17-b9a5-53fa06402dbc.ilcigno.com
*.beta.ilcigno.com
*.booking.ilcigno.com
*.ci.ilcigno.com
*.cicd.ilcigno.com
*.comune.ilcigno.com
*.drupal.ilcigno.com
ilcigno.com
*.ilcigno.com
*.jenkins.ilcigno.com
*.m.ilcigno.com
*.mta-sts.ilcigno.com
*.preprod.ilcigno.com
*.prod.ilcigno.com
*.random.ilcigno.com
*.rs.ilcigno.com
*.16.jiangqi.com
*.a62b7744-666d-4578-8b37-5c5e938f5245.jiangqi.com
*.console.jiangqi.com
*.hostmaster.jiangqi.com
jiangqi.com
*.jiangqi.com
*.ww16.jiangqi.com
*.com.oliverkavanagh.com
oliverkavanagh.com
*.oliverkavanagh.com
*.v.oliverkavanagh.com
*.ww16.oliverkavanagh.com
*.ww25.oliverkavanagh.com
*.carlosdacostacoelho.oneness.it
*.correu.oneness.it
*.mail.oneness.it
*.mx001.oneness.it
*.mymail.oneness.it
*.mywebmail.oneness.it
*.notexistsaxntemail.oneness.it
*.notexistsrelay.oneness.it
oneness.it
*.oneness.it
*.outlook.oneness.it
*.remote.oneness.it
*.sabrina.oneness.it
*.sabrinaagosto.oneness.it
queenslandopalmines.com.au
*.queenslandopalmines.com.au
*.ww1.queenslandopalmines.com.au
*.ww25.queenslandopalmines.com.au
*.ww31.queenslandopalmines.com.au
*.ww38.queenslandopalmines.com.au
*.autoconfig.semvicio.com
semvicio.com
*.semvicio.com
*.ww25.semvicio.com
Other domains in certificate