Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=jurassic-journey.co.uk
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 11, 2026
Valid Until
August 09, 2026
78 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
77:A2:28:79:B1:C5:8F:A8:E5:8F:6B:B3:FF:8E:27:A9:5B:86:E6:6F:BF:F8:D0:DC:4C:5C:44:EB:AC:28:D2:D5
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
inoutfest.org
*.inoutfest.org
*.askglsh.inoutfest.org
*.ausmcedu.inoutfest.org
*.israel-turkey.inoutfest.org
*.labratlab.inoutfest.org
1win-casinoz-club.sbs
*.1win-casinoz-club.sbs
451197.xyz
*.451197.xyz
careerachieveguide.xyz
*.careerachieveguide.xyz
cncn.io
*.cncn.io
*.community.cncn.io
*.l.cncn.io
*.relay.cncn.io
*.teleport.cncn.io
corecleara.co
*.corecleara.co
dominicanrepublic.com.au
*.dominicanrepublic.com.au
*.ww25.dominicanrepublic.com.au
fluidefinance.io
*.fluidefinance.io
*.sitemap.fluidefinance.io
funstuff.store
*.funstuff.store
growthstrategyteams.co
*.growthstrategyteams.co
hapiyun.xyz
*.hapiyun.xyz
hitzextracts.com
*.hitzextracts.com
hkconstruct.com
*.hkconstruct.com
*.sitemap.hkconstruct.com
*.www.hkconstruct.com
hkyyfk.com
*.hkyyfk.com
ifeelgoodlabs.com
*.ifeelgoodlabs.com
insidetravelray.co
*.insidetravelray.co
*.www.insidetravelray.co
jurassic-journey.co.uk
*.jurassic-journey.co.uk
*.old.jurassic-journey.co.uk
liceocma.com
*.liceocma.com
local-plumbers-near-me.shop
*.local-plumbers-near-me.shop
*.cpcalendars.mediamaratonmusical.co
mediamaratonmusical.co
*.mediamaratonmusical.co
pshtop.com
*.pshtop.com
*.ww25.pshtop.com
*.ww38.pshtop.com
reststream.io
*.reststream.io
*.studio.reststream.io
*.admin.segnaletiche.it
*.bbs.segnaletiche.it
*.dashboard.segnaletiche.it
*.dev.segnaletiche.it
*.report.segnaletiche.it
segnaletiche.it
*.segnaletiche.it
teamgrowthvantage.co
*.teamgrowthvantage.co
*.2025.vavadap14.com
vavadap14.com
*.vavadap14.com
*.wp.vavadap14.com
*.autodiscover.vfw6740.org
*.development.vfw6740.org
*.random.vfw6740.org
vfw6740.org
*.vfw6740.org
*.webmail.vfw6740.org
*.ww25.vfw6740.org
*.users.vistarealty.com
vistarealty.com
*.vistarealty.com
*.ww38.vistarealty.com
*.dns.yunfub.cc
*.wap.yunfub.cc
yunfub.cc
*.yunfub.cc
Other domains in certificate