Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=ucimsrc.org
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 12, 2026
Valid Until
August 10, 2026
69 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
03:EE:4C:1D:26:F6:39:38:0F:8D:95:4D:EC:B2:67:EF:7F:63:17:D8:A5:C5:9D:16:77:B3:E0:52:38:7B:34:F5
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
69 domains
novostitop.com
*.novostitop.com
blkfri.au
*.blkfri.au
brandequity.com.au
*.brandequity.com.au
*.6801847.bssspro.com
bssspro.com
*.bssspro.com
*.news.bssspro.com
countrylane.com.au
*.countrylane.com.au
*.mailserver.countrylane.com.au
*.webmail.countrylane.com.au
domace.com
*.domace.com
downwindtechnology.com
*.downwindtechnology.com
ergsc.com
*.ergsc.com
europasalonspa.com
*.europasalonspa.com
fineart.global
*.fineart.global
frelancesage.com
*.frelancesage.com
*.b.gamesfanatic.com
*.dev.gamesfanatic.com
*.directory.gamesfanatic.com
*.forum.gamesfanatic.com
gamesfanatic.com
*.gamesfanatic.com
*.images.gamesfanatic.com
*.jobs.gamesfanatic.com
*.users.gamesfanatic.com
jtsmachinery.com
*.jtsmachinery.com
maycamtv.com
*.maycamtv.com
onlinebank.au
*.onlinebank.au
phuongtoanphat.net
*.phuongtoanphat.net
r3sa.com
*.r3sa.com
relish.au
*.relish.au
sarahdisgrace.com
*.sarahdisgrace.com
sextondermatology.com
*.sextondermatology.com
skoki.net
*.skoki.net
sneakervault.com.au
*.sneakervault.com.au
sportsmansclub.com
*.sportsmansclub.com
spraytanningkit.com
*.spraytanningkit.com
taut.in
*.taut.in
ucimsrc.org
*.ucimsrc.org
voonge.com
*.voonge.com
*.vpn.voonge.com
*.webdisk.voonge.com
ziipa.com.au
*.ziipa.com.au
Other domains in certificate