Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=o2o.com.au
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
January 30, 2026
Valid Until
April 30, 2026
70 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8F:FC:7A:8A:FD:BC:8D:5C:CE:FE:ED:00:61:A5:54:DC:2E:B6:B8:D7:7F:7D:7D:1D:F4:7C:A4:B8:A4:9B:94:93
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
pharma.us
*.pharma.us
*.biovet.pharma.us
*.comune.pharma.us
*.mail.pharma.us
*.mx.pharma.us
*.prod.pharma.us
councilfire.net
*.councilfire.net
*.mail.councilfire.net
*.ww25.councilfire.net
dedicated.com.au
*.dedicated.com.au
*.smtp.dedicated.com.au
faaif.com
*.faaif.com
*.islamic-finance.faaif.com
*.nsd.faaif.com
*.ceowcyut.flrc.com
flrc.com
*.flrc.com
*.hostmaster.flrc.com
*.n.flrc.com
*.z.flrc.com
freemusicnow.com
*.freemusicnow.com
*.random.freemusicnow.com
*.www1.freemusicnow.com
lynnbreedlove.com
*.lynnbreedlove.com
*.ws.lynnbreedlove.com
*.wss.lynnbreedlove.com
*.308t3a8gnquott2z.netscapepress.com
*.cpcalendars.netscapepress.com
*.cpcontacts.netscapepress.com
*.edge.netscapepress.com
*.mail.netscapepress.com
netscapepress.com
*.netscapepress.com
*.vwfspjcqo1y3i5uo.netscapepress.com
*.wap.netscapepress.com
*.webmail.netscapepress.com
ny8804.xyz
*.ny8804.xyz
*.ww16.ny8804.xyz
*.ww25.ny8804.xyz
*.ww38.ny8804.xyz
*.chris.o2o.com.au
*.mwrbc.o2o.com.au
o2o.com.au
*.o2o.com.au
*.outgoing.o2o.com.au
*.ww38.o2o.com.au
*.hostmaster.ocdyouth.info
ocdyouth.info
*.ocdyouth.info
*.www.ocdyouth.info
*.admin.oninegdb.com
*.api.oninegdb.com
*.app.oninegdb.com
*.dev.oninegdb.com
*.kf.oninegdb.com
*.old.oninegdb.com
oninegdb.com
*.oninegdb.com
*.staging.oninegdb.com
*.test.oninegdb.com
*.www.oninegdb.com
*.corp.priceline.pro
priceline.pro
*.priceline.pro
*.qa.priceline.pro
*.forum.r21freak.com
*.forums.r21freak.com
r21freak.com
*.r21freak.com
*.admin.xhmester.com
*.media.xhmester.com
*.soneyleone.xhmester.com
*.waptrik.xhmester.com
*.ww.xhmester.com
*.ww17.xhmester.com
*.ww38.xhmester.com
*.www.xhmester.com
xhmester.com
*.xhmester.com
*.xvideo.xhmester.com
*.xx.xhmester.com
*.xxx.xhmester.com
*.zh.xhmester.com
Other domains in certificate