Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=erasmushousing.net
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 24, 2026
Valid Until
July 23, 2026
56 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E4:FC:46:AA:65:9F:14:FC:D4:72:B0:21:0D:9D:F7:15:75:A3:2F:F4:1D:5A:B6:89:0F:AE:EA:B9:76:C4:7C:0E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
lightninginthebox.com
*.lightninginthebox.com
*.ww25.lightninginthebox.com
*.ww38.lightninginthebox.com
638hh.com
*.638hh.com
*.eee.638hh.com
*.wwww.638hh.com
789go.wiki
*.789go.wiki
*.869caf38-0a06-4cc3-adf9-683f1a5e99e5.789go.wiki
*.api.789go.wiki
*.app.789go.wiki
*.hr.789go.wiki
*.my.789go.wiki
*.public.789go.wiki
*.www.789go.wiki
*.api.apicolturabanconi.com
apicolturabanconi.com
*.apicolturabanconi.com
*.random.apicolturabanconi.com
*.wp.apicolturabanconi.com
*.ww25.apicolturabanconi.com
*.ada7e0bc-e8b1-47b9-aefa-4b9146e1cb0e.bot88.link
*.admin.bot88.link
*.api.bot88.link
*.app.bot88.link
*.assets.bot88.link
*.backup.bot88.link
*.blog.bot88.link
bot88.link
*.bot88.link
*.dashboard.bot88.link
*.demo.bot88.link
*.dev.bot88.link
*.fqxlwmkz.bot88.link
*.mail.bot88.link
*.mailer.bot88.link
*.marketing.bot88.link
*.qa.bot88.link
*.secure.bot88.link
*.staging.bot88.link
*.stg.bot88.link
*.test.bot88.link
*.uat.bot88.link
*.v1.bot88.link
*.v2.bot88.link
*.web.bot88.link
*.wiki.bot88.link
brokentoadstore.co.uk
*.brokentoadstore.co.uk
*.ww17.brokentoadstore.co.uk
*.ww25.brokentoadstore.co.uk
*.ww38.brokentoadstore.co.uk
cumpara.xyz
*.cumpara.xyz
*.4g.erasmushousing.net
*.5g.erasmushousing.net
*.app.erasmushousing.net
*.assets.erasmushousing.net
*.docs.erasmushousing.net
erasmushousing.net
*.erasmushousing.net
*.m.erasmushousing.net
*.mail.erasmushousing.net
*.secure.erasmushousing.net
*.staging.erasmushousing.net
*.static.erasmushousing.net
*.test.erasmushousing.net
*.wildcard.erasmushousing.net
*.www.erasmushousing.net
*.32.l2omega.net
l2omega.net
*.l2omega.net
*.net.l2omega.net
*.ww38.l2omega.net
medicalproductsonline.org
*.medicalproductsonline.org
*.mx.medicalproductsonline.org
*.ww17.medicalproductsonline.org
*.www.medicalproductsonline.org
*.32.wellsfartgo.com
*.ceo.wellsfartgo.com
*.evetest.wellsfartgo.com
*.staging.wellsfartgo.com
wellsfartgo.com
*.wellsfartgo.com
*.cloud.zxiy.com
zxiy.com
*.zxiy.com
Other domains in certificate