Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=montanabedandbreakfast.co.uk
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
March 14, 2026
Valid Until
June 12, 2026
50 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
EF:3D:1F:FA:A8:91:73:E8:D1:78:B7:23:C2:16:94:FC:FD:F6:69:8C:8B:CC:01:28:07:58:61:DC:97:79:5B:5A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
jmlawpa.com
*.jmlawpa.com
3d-printing-uk-88.click
*.3d-printing-uk-88.click
81677.qpon
*.81677.qpon
acousticpsychos.com
*.acousticpsychos.com
agenticeur.com
*.agenticeur.com
annemarketing.com
*.annemarketing.com
aroggomedicare.com
*.aroggomedicare.com
assignmentglobe.com
*.assignmentglobe.com
attainablesecurityfusion.com
*.attainablesecurityfusion.com
autucau.com
*.autucau.com
bellaspalace.info
*.bellaspalace.info
bisadongdax69.com
*.bisadongdax69.com
booktrainers.com
*.booktrainers.com
btcstrategyfund.info
*.btcstrategyfund.info
cellunlock.net
*.cellunlock.net
chinapagodachaska.com
*.chinapagodachaska.com
cmox.org
*.cmox.org
contentmarketingworks.com
*.contentmarketingworks.com
etelifrank.com
*.etelifrank.com
freedomappz.com
*.freedomappz.com
freeincestvideos.net
*.freeincestvideos.net
gocollegeny.org
*.gocollegeny.org
gruponewmedical.com
*.gruponewmedical.com
gseconsulting.com
*.gseconsulting.com
jaishreechoudhary.com
*.jaishreechoudhary.com
khotg.org
*.khotg.org
khrmow.net
*.khrmow.net
kingqueencaribbeanbarandgrill.com
*.kingqueencaribbeanbarandgrill.com
koala-annuaireweb.de
*.koala-annuaireweb.de
latrattoriaky.com
*.latrattoriaky.com
love-lucy.net
*.love-lucy.net
montanabedandbreakfast.co.uk
*.montanabedandbreakfast.co.uk
onlycryptids.com
*.onlycryptids.com
smssensy.com
*.smssensy.com
soest.cn
*.soest.cn
stonetreegolf.com
*.stonetreegolf.com
superlink.bio
*.superlink.bio
sv3888sv.click
*.sv3888sv.click
swiipe.net
*.swiipe.net
ticenpe.com
*.ticenpe.com
troubleanglechurch.net
*.troubleanglechurch.net
vaticancity.travel
*.vaticancity.travel
velilo.com
*.velilo.com
viberehab.com
*.viberehab.com
vitavistin.com
*.vitavistin.com
Other domains in certificate