Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=liquidmedical.co.uk
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 19, 2026
Valid Until
May 20, 2026
87 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
50:7C:19:DB:81:63:DE:96:95:F9:89:EF:80:12:73:BF:96:67:51:63:65:37:CF:8C:D1:BA:D3:3A:48:32:23:48
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
office3565.com
*.office3565.com
*.outlook.office3565.com
2-win.bet
*.2-win.bet
*.new.2-win.bet
*.ww38.2-win.bet
*.7dcfbd1602094b90640e069e4cd6016b.934dmy301.top
934dmy301.top
*.934dmy301.top
*.970f72495190a2a5f44aaf643c8d96b1.934dmy301.top
aversicherung.de
*.aversicherung.de
*.ww16.aversicherung.de
*.alex.bils.space
bils.space
*.bils.space
deerfieldacademy.com
*.deerfieldacademy.com
*.api.emazi.cc
*.bm.emazi.cc
*.dev.emazi.cc
emazi.cc
*.emazi.cc
*.router.emazi.cc
*.staging.emazi.cc
*.ww1.emazi.cc
*.ww12.emazi.cc
*.ww38.emazi.cc
*.ww7.emazi.cc
*.www.emazi.cc
fitnews.space
*.fitnews.space
*.cpcalendars.herogayab.me
herogayab.me
*.herogayab.me
*.vw.herogayab.me
*.ww.herogayab.me
*.wwu.herogayab.me
*.wwv.herogayab.me
installations.com.au
*.installations.com.au
*.mcustom.installations.com.au
instv421.com
*.instv421.com
insurance88.co
*.insurance88.co
jqa.com
*.jqa.com
kcqsvyr.xyz
*.kcqsvyr.xyz
*.yqs.kcqsvyr.xyz
kuyhaa-me.website
*.kuyhaa-me.website
leaknudes.co
*.leaknudes.co
*.staging.leaknudes.co
*.ww25.leaknudes.co
liquidmedical.co.uk
*.liquidmedical.co.uk
*.www.liquidmedical.co.uk
localdealz.us
*.localdealz.us
*.ww38.localdealz.us
*.cn.my-drive.com
*.hostmaster.my-drive.com
my-drive.com
*.my-drive.com
*.romania.my-drive.com
*.ww38.my-drive.com
*.careers.notherntrust.com
*.eu2.notherntrust.com
notherntrust.com
*.notherntrust.com
*.uat.notherntrust.com
*.uatiaa.notherntrust.com
*.website.notherntrust.com
*.ww16.notherntrust.com
*.ww25.notherntrust.com
*.ww35.notherntrust.com
*.www-ac.notherntrust.com
*.prueba1.qualitygroupgt.com
qualitygroupgt.com
*.qualitygroupgt.com
unpropitiousness.sbs
*.unpropitiousness.sbs
*.hostmaster.xeviva.com
*.m.xeviva.com
xeviva.com
*.xeviva.com
Other domains in certificate