Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=orga.au
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
May 31, 2026
Valid Until
August 29, 2026
82 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B2:E4:60:97:73:FF:89:22:E7:C1:7E:5C:4B:80:E7:DC:43:10:F8:E4:5A:7C:26:B5:11:ED:38:FE:6A:46:74:49
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
orga.au
*.orga.au
*.acwa.orga.au
*.afca.orga.au
*.africaustraliannetwork.orga.au
*.aqia.orga.au
*.avivo.orga.au
*.barnardos.orga.au
*.barwonhealth.orga.au
*.bbcatholic.orga.au
*.bendigohealth.orga.au
*.campaigncentral.orga.au
*.cara.orga.au
*.cit.orga.au
*.crimcheck.orga.au
*.data.orga.au
*.dianella.orga.au
*.dsa.orga.au
*.eadmissions.orga.au
*.epworth.orga.au
*.fsc.orga.au
*.genu.orga.au
*.georgeinstitute.orga.au
*.girlguidessa.orga.au
*.goodstart.orga.au
*.greeningaustralia.orga.au
*.grha.orga.au
*.hillview.orga.au
*.jezuici.orga.au
*.kehilatnitzan.orga.au
*.landcarewa.orga.au
*.leavingviolenceprogram.orga.au
*.lier.orga.au
*.livetheatre.orga.au
*.lmpa.orga.au
*.mealsonwheelssa.orga.au
*.mensline.orga.au
*.msra.orga.au
*.random.orga.au
*.rch.orga.au
*.rivconmusic.orga.au
*.roleystonemarkets.orga.au
*.rspcaqld.orga.au
*.save-our-wildlife.orga.au
*.schoenstatt.orga.au
*.shira.orga.au
*.sjog.orga.au
*.somerville.orga.au
*.ssaa.orga.au
*.sscs.orga.au
*.svha.orga.au
*.tg.orga.au
*.thp.orga.au
*.vmta.orga.au
*.vpa.orga.au
*.wilderness.orga.au
*.winanga-li.orga.au
*.windgap.orga.au
*.ww16.orga.au
*.ww25.orga.au
amarracaoerituais.com
*.amarracaoerituais.com
bananarepublicbarclaysus.com
*.bananarepublicbarclaysus.com
*.ww25.bananarepublicbarclaysus.com
biblio-trade.com
*.biblio-trade.com
*.beta.bizconcentrat.com
bizconcentrat.com
*.bizconcentrat.com
*.videobk2.bizconcentrat.com
*.ciberseguranca.inscricao-vainaweb.com
*.empower.inscricao-vainaweb.com
*.ilson-sons.inscricao-vainaweb.com
inscricao-vainaweb.com
*.inscricao-vainaweb.com
*.wilson-sons.inscricao-vainaweb.com
*.2fapp.otpshop.xyz
*.app.otpshop.xyz
*.d.otpshop.xyz
*.hotfix.otpshop.xyz
otpshop.xyz
*.otpshop.xyz
*.preprod.otpshop.xyz
streameast.pro
*.streameast.pro
*.v3.streameast.pro
*.ww16.streameast.pro
*.ww25.streameast.pro
*.ww38.streameast.pro
Other domains in certificate