Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=jwp.net
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 11, 2026
Valid Until
July 10, 2026
34 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
EE:16:A7:2A:BF:05:54:00:72:85:12:2B:B4:D5:24:5E:3D:8F:E4:4D:C0:AA:8B:06:16:98:E6:0A:78:CA:2A:B6
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
87 domains
looker.it
*.looker.it
ambrosiaoftucson.com
*.ambrosiaoftucson.com
*.random.ambrosiaoftucson.com
*.ww25.ambrosiaoftucson.com
betconstruct.legal
*.betconstruct.legal
*.mail.betconstruct.legal
*.random.betconstruct.legal
bhundoo.com.au
*.bhundoo.com.au
*.ww25.bhundoo.com.au
brookdalecommunity.com
*.brookdalecommunity.com
*.ww38.brookdalecommunity.com
*.admin.cabcnews.com
cabcnews.com
*.cabcnews.com
*.demo.cabcnews.com
diamondbracelet.it
*.diamondbracelet.it
famigliari.it
*.famigliari.it
fendiandh.live
*.fendiandh.live
*.4fab55d6-b0fc-43c1-b647-cdee76699a9c.gabessdsp.fan
*.6f56e02b-07d6-4263-ae02-7552993bba29.gabessdsp.fan
*.api.gabessdsp.fan
*.bd114e0c-9469-4b44-b963-f74c13e0ea5a.gabessdsp.fan
*.dev.gabessdsp.fan
gabessdsp.fan
*.gabessdsp.fan
*.web1.gabessdsp.fan
gamestreetstudios.com
*.gamestreetstudios.com
*.www.gamestreetstudios.com
handphones.it
*.handphones.it
*.hostmaster.housewerksalvage.com
housewerksalvage.com
*.housewerksalvage.com
*.www.housewerksalvage.com
*.autodiscover.ioread.com
ioread.com
*.ioread.com
*.sitemap.ioread.com
*.aznct.jwp.net
*.ehz.jwp.net
*.eqy46l.jwp.net
jwp.net
*.jwp.net
*.khm.jwp.net
*.ouy.jwp.net
*.w9e.jwp.net
*.ww38.jwp.net
*.x4x.jwp.net
lounee.com
*.lounee.com
*.random.lounee.com
*.sitemaps.lounee.com
moistureintrusion.com
*.moistureintrusion.com
pitches.it
*.pitches.it
playsports.it
*.playsports.it
*.help.puber.com
puber.com
*.puber.com
shoa.it
*.shoa.it
stringers.com
*.stringers.com
*.ww25.stringers.com
twilightsilver.com
*.twilightsilver.com
veztby.cz
*.veztby.cz
*.ww25.veztby.cz
*.advocatehealth.wwwchevy.com
*.preview.wwwchevy.com
wwwchevy.com
*.wwwchevy.com
*.www.yallashoot.pro
yallashoot.pro
*.yallashoot.pro
Other domains in certificate