Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=affinityrehab.com.au
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 05, 2026
Valid Until
August 03, 2026
79 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
62:E5:44:F9:B4:7B:15:33:86:C2:DC:F5:29:DF:D2:72:F3:89:47:0F:CD:4B:41:0C:65:95:78:F7:FB:0E:2B:C3
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
lopezjoyeria.com
*.lopezjoyeria.com
*.beta.lopezjoyeria.com
*.cpanel.lopezjoyeria.com
*.projects.lopezjoyeria.com
*.sg.lopezjoyeria.com
*.ww25.lopezjoyeria.com
*.ww38.lopezjoyeria.com
*.38.504zz.com
504zz.com
*.504zz.com
*.mobile.504zz.com
*.random.504zz.com
*.ww25.504zz.com
*.www.504zz.com
6ruote.com
*.6ruote.com
*.analytic.6ruote.com
*.analytics.6ruote.com
*.dashs.6ruote.com
*.demo.6ruote.com
*.flowise.6ruote.com
*.hostmaster.6ruote.com
*.intelligence.6ruote.com
*.remote.6ruote.com
*.report.6ruote.com
*.workflow.6ruote.com
affinityrehab.com.au
*.affinityrehab.com.au
*.alpha.affinityrehab.com.au
*.argo.affinityrehab.com.au
*.ci.affinityrehab.com.au
*.insight.affinityrehab.com.au
*.poc.affinityrehab.com.au
*.production.affinityrehab.com.au
*.random.affinityrehab.com.au
*.www.affinityrehab.com.au
bergenlopeklubb.com
*.bergenlopeklubb.com
bitsonline.us
*.bitsonline.us
*.co.bitsonline.us
*.hostmaster.bitsonline.us
*.ww38.bitsonline.us
*.www.bitsonline.us
*.ads.elhierrotesigue.com
elhierrotesigue.com
*.elhierrotesigue.com
*.img.elhierrotesigue.com
*.med.elhierrotesigue.com
*.ww38.elhierrotesigue.com
eorosport.com
*.eorosport.com
*.pl.eorosport.com
*.ww38.eorosport.com
*.zmail.eorosport.com
epub.au
*.epub.au
*.ww25.epub.au
extremepolishingsystems.com
*.extremepolishingsystems.com
*.dev2.freecredir.com
freecredir.com
*.freecredir.com
*.saratov.freecredir.com
hjaf5.com
*.hjaf5.com
*.ipwww.hjaf5.com
*.ww25.hjaf5.com
jzrputtbut.net
*.jzrputtbut.net
miestar.es
*.miestar.es
nadir.au
*.nadir.au
*.ww25.nadir.au
*.clients.nuevoloco.com
*.letter.nuevoloco.com
*.media.nuevoloco.com
nuevoloco.com
*.nuevoloco.com
*.shop.nuevoloco.com
*.ta.nuevoloco.com
*.wholesale.nuevoloco.com
*.wiki.nuevoloco.com
*.ww25.nuevoloco.com
*.ww38.nuevoloco.com
thelearningtree.net
*.thelearningtree.net
*.ww5.thelearningtree.net
Other domains in certificate