Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=humankindskincare.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 21, 2026
Valid Until
August 19, 2026
68 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
46:CE:52:06:ED:01:7F:7A:A2:A1:80:C2:D1:F9:6E:59:D1:80:EE:7E:D0:F5:A1:E8:6F:79:0D:E0:74:18:E9:2F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
87 domains
comhotels.com
*.comhotels.com
*.agodaexpediatrip.comhotels.com
*.gmail.comhotels.com
*.hostmaster.comhotels.com
*.hotels.comhotels.com
*.mail.comhotels.com
*.mail2.comhotels.com
*.tripadvisor.comhotels.com
*.ww80.comhotels.com
*.www.comhotels.com
*.yahoo.comhotels.com
*.youtube.comhotels.com
*.36cd241d-30c9-430c-b580-4635c370b5f8.anglia.lt
*.6cd12350-b8db-4577-b34a-0a7b0aa0fdca.anglia.lt
*.admin.anglia.lt
anglia.lt
*.anglia.lt
*.autoconfig.anglia.lt
*.community.anglia.lt
*.sitemap.anglia.lt
*.api.etonline.co
*.backup.etonline.co
*.dev.etonline.co
etonline.co
*.etonline.co
*.hostmaster.etonline.co
*.kuraninja.etonline.co
*.m.etonline.co
*.mail.etonline.co
*.mailer.etonline.co
*.marketing.etonline.co
*.pipeline.etonline.co
*.qa.etonline.co
*.report.etonline.co
*.search.etonline.co
*.staging.etonline.co
*.stg.etonline.co
*.v1.etonline.co
*.v2.etonline.co
*.web.etonline.co
*.ww25.etonline.co
fasioncheque.com
*.fasioncheque.com
*.random.fasioncheque.com
humankindskincare.com
*.humankindskincare.com
*.store.humankindskincare.com
*.annacolibri.mythemecloud.io
*.blogger.mythemecloud.io
*.chocolateblue.mythemecloud.io
*.citoyenblr.mythemecloud.io
*.fitness2.mythemecloud.io
*.lampandco.mythemecloud.io
*.legacytourism.mythemecloud.io
*.lesfaitspapillon.mythemecloud.io
*.musiquesalain.mythemecloud.io
mythemecloud.io
*.mythemecloud.io
*.ouigreens.mythemecloud.io
*.paypaliservice.mythemecloud.io
*.scuba.mythemecloud.io
*.store.mythemecloud.io
*.ww16.mythemecloud.io
*.ww38.mythemecloud.io
rabito.io
*.rabito.io
*.auth.scootiabank.com
*.facebook.scootiabank.com
*.online.scootiabank.com
scootiabank.com
*.scootiabank.com
*.scotiaonline.scootiabank.com
*.ww38.scootiabank.com
*.beta.toyotaofgrandforks.com
*.en.toyotaofgrandforks.com
*.hotel.toyotaofgrandforks.com
*.id.toyotaofgrandforks.com
*.learn.toyotaofgrandforks.com
*.play.toyotaofgrandforks.com
*.smartpath.toyotaofgrandforks.com
*.spb.toyotaofgrandforks.com
*.survey.toyotaofgrandforks.com
toyotaofgrandforks.com
*.toyotaofgrandforks.com
*.wiki.toyotaofgrandforks.com
*.ww01.toyotaofgrandforks.com
Other domains in certificate