Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=puritanss.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
March 19, 2026
Valid Until
June 17, 2026
36 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
25:DE:1F:A5:12:D7:EA:45:93:C2:C0:8C:5A:80:9C:39:F6:9E:30:30:71:6A:BA:33:D4:54:D5:C0:26:1F:FA:D9
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
puritanss.com
*.puritanss.com
*.random.puritanss.com
*.ww25.puritanss.com
artzone.it
*.artzone.it
*.bi.artzone.it
*.hostmaster.artzone.it
*.aff.cowichan.net
*.cedar.cowichan.net
cowichan.net
*.cowichan.net
*.film.cowichan.net
*.livinglegends.cowichan.net
*.random.cowichan.net
*.spirit.cowichan.net
*.visit.cowichan.net
*.wines.cowichan.net
*.api.directseller.ca
*.app.directseller.ca
*.assets.directseller.ca
*.dev.directseller.ca
directseller.ca
*.directseller.ca
*.remote.directseller.ca
*.test.directseller.ca
*.vpn.directseller.ca
*.7831e76f-e861-4a41-a2aa-3af90ad76e75.eightk.io
*.admin.eightk.io
*.api.eightk.io
*.app.eightk.io
*.cdd2798a-79ca-4699-9c5d-4c710f35bf41.eightk.io
*.demo.eightk.io
*.dev.eightk.io
eightk.io
*.eightk.io
*.f7d55355-6444-4bef-86c5-ee035641ca71.eightk.io
*.hostmaster.eightk.io
*.test.eightk.io
*.www.eightk.io
*.dev.gruppomediterraneo.it
gruppomediterraneo.it
*.gruppomediterraneo.it
iuh.ch
*.iuh.ch
*.kunden.iuh.ch
*.m.iuh.ch
*.my.iuh.ch
*.new.iuh.ch
*.news.iuh.ch
*.staging.iuh.ch
jujnbar1056.vip
*.jujnbar1056.vip
kiamlove.com
*.kiamlove.com
*.ww25.kiamlove.com
laf.com.pl
*.laf.com.pl
*.mail.laf.com.pl
*.mta-sts.laf.com.pl
*.m.moon80.vip
moon80.vip
*.moon80.vip
*.sitemap.moon80.vip
newbeginningsfamily.com
*.newbeginningsfamily.com
ojrrp.org
*.ojrrp.org
quilllbot.com
*.quilllbot.com
*.random.quilllbot.com
*.ww25.quilllbot.com
regentsevenseascruise.shop
*.regentsevenseascruise.shop
*.sitemap.regentsevenseascruise.shop
*.sitemaps.regentsevenseascruise.shop
*.random.shopsheaonline.com
shopsheaonline.com
*.shopsheaonline.com
*.ww16.shopsheaonline.com
*.ww25.shopsheaonline.com
timeshareresorts.com.au
*.timeshareresorts.com.au
*.random.yolovefrozenyogurtaz-hub.com
yolovefrozenyogurtaz-hub.com
*.yolovefrozenyogurtaz-hub.com
*.www.zm2w.com
*.wwww.zm2w.com
zm2w.com
*.zm2w.com
Other domains in certificate