Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=bosautoparts.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 05, 2026
Valid Until
May 06, 2026
75 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4A:4E:E6:A8:BA:66:99:CF:2A:BD:0B:65:ED:D5:43:4C:05:5A:FA:36:A0:5E:4D:3A:49:00:D1:E4:FC:9D:F9:F3
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
nativela.com
*.nativela.com
8779.in
*.8779.in
*.snt4se1.8779.in
ampelangwin.club
*.ampelangwin.club
*.api.ampelangwin.club
*.app.ampelangwin.club
*.home.ampelangwin.club
*.m.ampelangwin.club
*.mobile.ampelangwin.club
*.news.ampelangwin.club
*.wap.ampelangwin.club
*.web.ampelangwin.club
*.www.ampelangwin.club
bosautoparts.com
*.bosautoparts.com
*.cpanel.bosautoparts.com
*.cpcalendars.bosautoparts.com
*.webmail.bosautoparts.com
diamondteam.xyz
*.diamondteam.xyz
*.ww25.diamondteam.xyz
*.www.diamondteam.xyz
*.click.findnewproperty.com.au
findnewproperty.com.au
*.findnewproperty.com.au
*.ww38.findnewproperty.com.au
madharprint.online
*.madharprint.online
*.ucl.madharprint.online
mamazon.pl
*.mamazon.pl
*.ww25.mamazon.pl
*.25.mehak.com
mehak.com
*.mehak.com
*.ra.mehak.com
*.ww1.mehak.com
morovis.com
*.morovis.com
muchy.com
*.muchy.com
musashiurawa.com
*.musashiurawa.com
muthupettai.com
*.muthupettai.com
myhomecompany.com
*.myhomecompany.com
myszkow.com
*.myszkow.com
nativeamericanlending.com
*.nativeamericanlending.com
naturbestattungen.com
*.naturbestattungen.com
naturediyprojects.live
*.naturediyprojects.live
nauticmotors.com
*.nauticmotors.com
odini.com
*.odini.com
odontologico.com
*.odontologico.com
omochi.com
*.omochi.com
onelegalbrain.com
*.onelegalbrain.com
orientador.com
*.orientador.com
orpas.com
*.orpas.com
osxbm.net
*.osxbm.net
outdoormarketing.com
*.outdoormarketing.com
paceauto.com
*.paceauto.com
pacecom.com
*.pacecom.com
penghibur.com
*.penghibur.com
phenomenaltraveljourney.live
*.phenomenaltraveljourney.live
pieck.com
*.pieck.com
protectiveunderwear.com
*.protectiveunderwear.com
*.shop.protectiveunderwear.com
Other domains in certificate