Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=haneme.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
January 02, 2026
Valid Until
April 02, 2026
49 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D5:B1:5F:16:04:D3:2E:26:A7:1F:37:8C:1E:0D:76:93:6C:7B:F5:E2:3C:3F:CC:33:DE:C8:E5:7E:94:37:96:A8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
55 domains
xcarve.com
*.xcarve.com
*.root.xcarve.com
*.ww25.xcarve.com
1jepangbet.bio
*.1jepangbet.bio
agitaplaneta.com
*.agitaplaneta.com
*.random.agitaplaneta.com
bab.bet
*.bab.bet
bigpondenm.com
*.bigpondenm.com
cyberone.au
*.cyberone.au
*.25.domuspaulusvi.com
domuspaulusvi.com
*.domuspaulusvi.com
*.w.domuspaulusvi.com
*.ww25.domuspaulusvi.com
elsapoatx.com
*.elsapoatx.com
haneme.com
*.haneme.com
hfg.com.au
*.hfg.com.au
hlep.com.au
*.hlep.com.au
nocarb.life
*.nocarb.life
northern-exposure.co
*.northern-exposure.co
*.demo.ocgoodwilltoday.com
*.hostmaster.ocgoodwilltoday.com
ocgoodwilltoday.com
*.ocgoodwilltoday.com
*.ww1.ocgoodwilltoday.com
*.ww38.ocgoodwilltoday.com
*.www.ocgoodwilltoday.com
porscha.au
*.porscha.au
supplies.es
*.supplies.es
*.ww38.supplies.es
*.com.tellmeladwp.com
*.random.tellmeladwp.com
tellmeladwp.com
*.tellmeladwp.com
vvn.au
*.vvn.au
whper.net
*.whper.net
*.ww38.whper.net
zeta-coin.org
*.zeta-coin.org
Other domains in certificate