Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=handsworthinstitute.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
January 11, 2026
Valid Until
April 11, 2026
49 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B2:CE:10:26:1B:55:9C:4B:60:F6:AD:86:9B:6A:D8:E0:2C:E1:1C:1C:10:1D:7E:E6:9B:55:E1:40:FA:54:C3:08
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
mygarbageguy.com
*.mygarbageguy.com
*.mail.mygarbageguy.com
*.payments.mygarbageguy.com
*.www.mygarbageguy.com
axom.pro
*.axom.pro
cabildogomera.org
*.cabildogomera.org
*.orgwww.cabildogomera.org
*.random.cabildogomera.org
*.chat.chatgt.com
chatgt.com
*.chatgt.com
*.ap.coinmingle.live
*.app.coinmingle.live
*.claim.coinmingle.live
coinmingle.live
*.coinmingle.live
*.dust.coinmingle.live
*.pay.coinmingle.live
*.test.coinmingle.live
*.gce.handsworthinstitute.com
handsworthinstitute.com
*.handsworthinstitute.com
*.hrm.handsworthinstitute.com
*.moodle.handsworthinstitute.com
*.new.handsworthinstitute.com
*.online.handsworthinstitute.com
*.portal.handsworthinstitute.com
*.sms.handsworthinstitute.com
*.ww25.handsworthinstitute.com
holidayonn.com
*.holidayonn.com
lovebugscrapbooking.com
*.lovebugscrapbooking.com
*.random.lovebugscrapbooking.com
*.secure.lovebugscrapbooking.com
*.141a8973.mo1iid5zo.top
*.app.mo1iid5zo.top
*.avito.mo1iid5zo.top
*.blablacar.mo1iid5zo.top
*.cdb046a9-53ec-48e9-b5bd-b618a7f7839e.mo1iid5zo.top
*.gaegt9e5eb588.mo1iid5zo.top
*.git.mo1iid5zo.top
*.gitlab.mo1iid5zo.top
mo1iid5zo.top
*.mo1iid5zo.top
*.nalozhka.mo1iid5zo.top
*.ozon.mo1iid5zo.top
*.pay.mo1iid5zo.top
*.pochtabank.mo1iid5zo.top
*.sber.mo1iid5zo.top
*.sberbank.mo1iid5zo.top
*.sbermarket.mo1iid5zo.top
*.sbermegamarket.mo1iid5zo.top
*.yandex.mo1iid5zo.top
*.youla.mo1iid5zo.top
*.devin.ocdevelopment.net
*.mathias.ocdevelopment.net
ocdevelopment.net
*.ocdevelopment.net
oceansideselfstorage.net
*.oceansideselfstorage.net
*.www.oceansideselfstorage.net
petsmuz.online
*.petsmuz.online
*.library.rawlingsforestry.com
*.mail.rawlingsforestry.com
rawlingsforestry.com
*.rawlingsforestry.com
*.www.rawlingsforestry.com
*.com.wwwrbcbank.com
*.ww38.wwwrbcbank.com
wwwrbcbank.com
*.wwwrbcbank.com
*.wap.wwwroboforex.com
wwwroboforex.com
*.wwwroboforex.com
xn--autoleasingvertrge-0tb.de
*.xn--autoleasingvertrge-0tb.de
xn--brsekurse-07a.de
*.xn--brsekurse-07a.de
xn--gartenbewsserungsanlage-37b.de
*.xn--gartenbewsserungsanlage-37b.de
xn--naturhaarverlngerung-nzb.de
*.xn--naturhaarverlngerung-nzb.de
xn--stoffbnder-v5a.de
*.xn--stoffbnder-v5a.de
Other domains in certificate