Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=bevstar.co.uk
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 02, 2026
Valid Until
May 03, 2026
69 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
AB:45:64:8F:47:7D:6A:7B:FC:6A:2E:A4:B0:4F:78:F8:16:C0:24:91:FD:43:76:9A:29:18:3C:FB:B5:20:0B:79
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
laveda.com
*.laveda.com
*.ww25.laveda.com
bevstar.co.uk
*.bevstar.co.uk
*.211.cardaccountview.com
*.aaa.cardaccountview.com
*.admin.cardaccountview.com
*.airflow.cardaccountview.com
*.argo.cardaccountview.com
*.beta.cardaccountview.com
*.board.cardaccountview.com
cardaccountview.com
*.cardaccountview.com
*.img1.cardaccountview.com
*.iuyuyt.cardaccountview.com
*.lib.cardaccountview.com
*.mta5.cardaccountview.com
*.mx4.cardaccountview.com
*.mx6.cardaccountview.com
*.prod.cardaccountview.com
*.production.cardaccountview.com
*.random.cardaccountview.com
*.superset.cardaccountview.com
*.track.cardaccountview.com
*.uat.cardaccountview.com
*.ww1.cardaccountview.com
*.ww3.cardaccountview.com
*.www.cardaccountview.com
chasevaluecenter.com
*.chasevaluecenter.com
*.mail.chasevaluecenter.com
*.www.chasevaluecenter.com
*.admin.et1337.com
et1337.com
*.et1337.com
*.mail.et1337.com
*.www.et1337.com
hatchel.com
*.hatchel.com
*.portal.hatchel.com
*.w.hatchel.com
*.7446a0f5ea00.kidshealtth.org
*.8ad80d0a-295f-11ec-a1d5-7446a0f5ea00.kidshealtth.org
*.crm.kidshealtth.org
*.development.kidshealtth.org
*.git.kidshealtth.org
kidshealtth.org
*.kidshealtth.org
*.laravel.kidshealtth.org
*.sitemap.kidshealtth.org
*.webmail.kidshealtth.org
*.www.kidshealtth.org
*.cpcontacts.leith-community-crops-in-pots.org
*.croftcarboncollege.leith-community-crops-in-pots.org
*.croftcuk.leith-community-crops-in-pots.org
*.forum.leith-community-crops-in-pots.org
leith-community-crops-in-pots.org
*.leith-community-crops-in-pots.org
*.ww38.leith-community-crops-in-pots.org
*.www.leith-community-crops-in-pots.org
*.login.mobilhile.com
mobilhile.com
*.mobilhile.com
*.org.mobilhile.com
*.random.mobilhile.com
*.s.mobilhile.com
*.ww38.mobilhile.com
*.ns1.sourcekibitzer.org
sourcekibitzer.org
*.sourcekibitzer.org
*.dns.subremofree.com
*.hostmaster.subremofree.com
*.mx7.subremofree.com
subremofree.com
*.subremofree.com
*.hostmaster.voyage.vegas
voyage.vegas
*.voyage.vegas
wayofthemind.org
*.wayofthemind.org
*.ww38.wayofthemind.org
*.biz.wuwj.com
*.img.wuwj.com
wuwj.com
*.wuwj.com
*.ww25.wuwj.com
*.random.xn--dchen-fra.de
xn--dchen-fra.de
*.xn--dchen-fra.de
Other domains in certificate