Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=extremeshop.co
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
March 29, 2026
Valid Until
June 27, 2026
55 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0F:79:81:98:29:4D:E4:8D:AD:31:D9:5C:40:2F:79:7D:A1:38:FD:35:30:BF:B4:4B:45:F6:95:4D:0C:46:D9:43
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
atalmedia.nl
*.atalmedia.nl
*.autodiscover.atalmedia.nl
*.localhost.atalmedia.nl
*.nl.atalmedia.nl
*.notexistswwe.atalmedia.nl
*.poct.atalmedia.nl
*.prikafspraak.atalmedia.nl
*.vingerprik.atalmedia.nl
*.ww.atalmedia.nl
*.wwe.atalmedia.nl
advancedprofitdetectionsystem.com
*.advancedprofitdetectionsystem.com
*.ww17.advancedprofitdetectionsystem.com
asuperbcableinternet.com
*.asuperbcableinternet.com
*.beta.asuperbcableinternet.com
*.gitlab.asuperbcableinternet.com
atrisk.com.au
*.atrisk.com.au
austinsurgeon.net
*.austinsurgeon.net
auti.au
*.auti.au
*.tunatoka.auti.au
bobbie-model.net
*.bobbie-model.net
*.ww16.bobbie-model.net
*.ww17.bobbie-model.net
*.ww25.bobbie-model.net
*.ww38.bobbie-model.net
columbuscityschool.org
*.columbuscityschool.org
*.ww16.columbuscityschool.org
*.ww38.columbuscityschool.org
dlisite.com
*.dlisite.com
*.random.dlisite.com
*.wmww.dlisite.com
*.ww17.dlisite.com
doubletrouble.com.au
*.doubletrouble.com.au
extremeshop.co
*.extremeshop.co
ftb.au
*.ftb.au
*.mobilemodularcontainers.ftb.au
*.ww38.ftb.au
fypinteriors.com
*.fypinteriors.com
*.vpn.fypinteriors.com
*.ww25.fypinteriors.com
*.www.fypinteriors.com
*.cym.gorwel.co
gorwel.co
*.gorwel.co
*.ww16.gorwel.co
*.adelaide.hdk.au
hdk.au
*.hdk.au
*.ww38.hdk.au
*.beta.masomenos.app
*.ipv4.masomenos.app
masomenos.app
*.masomenos.app
*.share.masomenos.app
*.www.masomenos.app
*.20.prometric-jo.com
prometric-jo.com
*.prometric-jo.com
*.w1.prometric-jo.com
*.ww25.prometric-jo.com
*.gitlab.ridesafeshop.shop
*.hostmaster.ridesafeshop.shop
ridesafeshop.shop
*.ridesafeshop.shop
*.rustore.ridesafeshop.shop
*.www.ridesafeshop.shop
shetlandsheepdog.com
*.shetlandsheepdog.com
thefilmfatale.me
*.thefilmfatale.me
*.ww38.thefilmfatale.me
u3.com.au
*.u3.com.au
*.ww25.u3.com.au
*.ww2.yang-sheng.org
yang-sheng.org
*.yang-sheng.org
Other domains in certificate