Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=drliwellness.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 21, 2026
Valid Until
May 22, 2026
88 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
34:C2:C0:3A:A1:40:91:66:DA:7C:39:F7:31:7D:8F:22:B6:F9:9C:FA:B5:8D:E3:FE:DE:33:F9:22:E7:29:03:3D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
fresto.com
*.fresto.com
*.br.fresto.com
*.hostmaster.fresto.com
*.m.fresto.com
*.sg.fresto.com
*.sman6smg.fresto.com
*.sman9-smg.fresto.com
*.smapldonbosko.fresto.com
*.smaterbang.fresto.com
*.ww25.fresto.com
drliwellness.com
*.drliwellness.com
*.3129b67136.espn365.com
*.a143.espn365.com
*.a434.espn365.com
*.a459.espn365.com
*.a724.espn365.com
*.a763.espn365.com
*.asfhyt0634.espn365.com
*.b120.espn365.com
*.b173.espn365.com
*.b178.espn365.com
*.b44.espn365.com
*.b596.espn365.com
*.c112.espn365.com
*.c203.espn365.com
*.c409.espn365.com
*.c486.espn365.com
*.c509.espn365.com
*.c669.espn365.com
*.c690.espn365.com
*.c937.espn365.com
*.d19.espn365.com
*.d378.espn365.com
*.d508.espn365.com
*.d702.espn365.com
*.d708.espn365.com
*.d891.espn365.com
espn365.com
*.espn365.com
*.ezvqox6825.espn365.com
*.f138.espn365.com
*.f257.espn365.com
*.f400.espn365.com
*.f509.espn365.com
*.f73.espn365.com
*.gnztcg416.espn365.com
*.new480.espn365.com
*.new630.espn365.com
*.new878.espn365.com
*.new928.espn365.com
*.new968.espn365.com
*.notexistsa539.espn365.com
*.5d7aed17-052e-404b-9af9-d5f29d1b65e8.panenslot-betting.vip
*.769432d7-799a-4032-9373-dd8236b9a435.panenslot-betting.vip
*.ad.panenslot-betting.vip
*.adblock.panenslot-betting.vip
*.adg.panenslot-betting.vip
*.adguard.panenslot-betting.vip
*.adguard01.panenslot-betting.vip
*.adguard1.panenslot-betting.vip
*.admin.panenslot-betting.vip
*.api.panenslot-betting.vip
*.app.panenslot-betting.vip
*.assets.panenslot-betting.vip
*.blog.panenslot-betting.vip
*.cdn.panenslot-betting.vip
*.ddwnhvip.panenslot-betting.vip
*.dns.panenslot-betting.vip
*.dns1.panenslot-betting.vip
*.doh.panenslot-betting.vip
*.doh1.panenslot-betting.vip
*.extranet.panenslot-betting.vip
*.faa1762c-5859-445e-84b8-ef8bf61e73bd.panenslot-betting.vip
*.hostmaster.panenslot-betting.vip
*.intranet.panenslot-betting.vip
*.nieuw.panenslot-betting.vip
*.ns.panenslot-betting.vip
panenslot-betting.vip
*.panenslot-betting.vip
*.recette.panenslot-betting.vip
*.resolver.panenslot-betting.vip
*.resolver1.panenslot-betting.vip
*.shop.panenslot-betting.vip
*.staging.panenslot-betting.vip
*.store.panenslot-betting.vip
*.support.panenslot-betting.vip
*.vip.panenslot-betting.vip
Other domains in certificate