Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=henryconstruction.co.uk
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 03, 2026
Valid Until
August 01, 2026
58 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BC:4F:10:61:58:60:2B:2D:86:5D:2E:6F:80:71:78:59:43:80:24:75:0B:AB:82:DA:28:40:5A:B0:5F:FE:12:24
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
qna.cc
*.qna.cc
*.1c.qna.cc
*.app.qna.cc
*.backup.qna.cc
*.crm.qna.cc
*.demo.qna.cc
*.m.qna.cc
*.moi.qna.cc
*.wildcard.qna.cc
*.ww01.qna.cc
33rrr.cc
*.33rrr.cc
*.m.33rrr.cc
*.24231.383ds.com
383ds.com
*.383ds.com
*.3xp.383ds.com
*.6425.383ds.com
*.9044222.383ds.com
*.aan.383ds.com
*.dais.383ds.com
*.hl.383ds.com
*.httpc.383ds.com
*.kanjia.383ds.com
*.kashang.383ds.com
*.myf.383ds.com
*.qiliang5.383ds.com
*.tft.383ds.com
*.wmlq.383ds.com
*.www.383ds.com
*.zjpzjp.383ds.com
*.zys521.383ds.com
666mod.top
*.666mod.top
*.ww16.666mod.top
*.ww25.666mod.top
cityfarms.it
*.cityfarms.it
*.hostmaster.cityfarms.it
*.a.dejavuwallet.info
*.afybhmke.dejavuwallet.info
*.cvazc.dejavuwallet.info
dejavuwallet.info
*.dejavuwallet.info
*.demo.dejavuwallet.info
*.hostmaster.dejavuwallet.info
*.mycvzsro.dejavuwallet.info
*.oiqzmxcvazc.dejavuwallet.info
*.staging.dejavuwallet.info
*.test.dejavuwallet.info
*.www.dejavuwallet.info
*.xcvazc.dejavuwallet.info
doorknobdiscountcenter.com
*.doorknobdiscountcenter.com
*.mail.doorknobdiscountcenter.com
*.random.doorknobdiscountcenter.com
*.www.doorknobdiscountcenter.com
grandvip.bet
*.grandvip.bet
hairyteenpics.pro
*.hairyteenpics.pro
*.ww16.hairyteenpics.pro
*.cloud.henryconstruction.co.uk
*.gslb.henryconstruction.co.uk
henryconstruction.co.uk
*.henryconstruction.co.uk
*.ww.henryconstruction.co.uk
*.ww25.henryconstruction.co.uk
legalizada.bet
*.legalizada.bet
logmeing.com
*.logmeing.com
*.api.pb-portal.uk
*.lettings.pb-portal.uk
*.mail.pb-portal.uk
pb-portal.uk
*.pb-portal.uk
*.s.pb-portal.uk
*.sa.pb-portal.uk
*.ua.pb-portal.uk
quantumlondon.co.uk
*.quantumlondon.co.uk
rbamfordguns.co.uk
*.rbamfordguns.co.uk
*.dan.shemaleheidi.com
shemaleheidi.com
*.shemaleheidi.com
*.ww25.shemaleheidi.com
Other domains in certificate