Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=opensupplies.co.uk
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
May 31, 2026
Valid Until
August 29, 2026
88 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C8:C9:81:CF:6E:43:AD:E7:22:A4:F5:C9:51:34:0B:B1:02:EB:61:ED:D5:3F:5D:06:6F:71:E0:1C:40:B3:C4:84
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
blogsboom.com
*.blogsboom.com
*.debtusa24.blogsboom.com
*.galase.blogsboom.com
*.mx1.blogsboom.com
*.negarforouzandeh.blogsboom.com
*.pavlosdufranton.blogsboom.com
*.ww25.blogsboom.com
australiantowing.com.au
*.australiantowing.com.au
beyondpsikoloji.com
*.beyondpsikoloji.com
*.cpanel.beyondpsikoloji.com
big99.live
*.big99.live
bkckfix.click
*.bkckfix.click
chatirbste.com
*.chatirbste.com
dar76xmk.cc
*.dar76xmk.cc
*.app.excellenceinmanufacturing.org
excellenceinmanufacturing.org
*.excellenceinmanufacturing.org
*.mta-sts.excellenceinmanufacturing.org
factsheet5.org
*.factsheet5.org
free-porn-movies.pro
*.free-porn-movies.pro
*.ww25.free-porn-movies.pro
gartenofbanbangame.com
*.gartenofbanbangame.com
*.ww25.gartenofbanbangame.com
*.admin.georgetownspeedway.com
georgetownspeedway.com
*.georgetownspeedway.com
*.ww.georgetownspeedway.com
*.ww1.georgetownspeedway.com
*.ww17.georgetownspeedway.com
*.ww35.georgetownspeedway.com
*.www.georgetownspeedway.com
golos-festival.online
*.golos-festival.online
*.ww38.golos-festival.online
hk-72.com
*.hk-72.com
importashop.com
*.importashop.com
*.m.importashop.com
jobshop.com.au
*.jobshop.com.au
*.smtpseguro.jobshop.com.au
*.ww38.jobshop.com.au
jowosuperwin.click
*.jowosuperwin.click
jpslot.cc
*.jpslot.cc
kvbillard.eu
*.kvbillard.eu
leadgenagency.com.au
*.leadgenagency.com.au
*.ww38.leadgenagency.com.au
lrwao.online
*.lrwao.online
opensupplies.co.uk
*.opensupplies.co.uk
*.www.opensupplies.co.uk
passatgeinsolit.org
*.passatgeinsolit.org
*.ww38.passatgeinsolit.org
privateromance.life
*.privateromance.life
santandee.de
*.santandee.de
*.shop.santandee.de
*.store.santandee.de
*.test.santandee.de
sigma-finance.io
*.sigma-finance.io
smalldogtlv.com
*.smalldogtlv.com
*.ww25.smalldogtlv.com
*.api.socialmediatoday.co
*.m.socialmediatoday.co
socialmediatoday.co
*.socialmediatoday.co
*.www.socialmediatoday.co
underwaterjeju.com
*.underwaterjeju.com
*.ww38.underwaterjeju.com
Other domains in certificate