Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=koolhealthy.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 25, 2026
Valid Until
April 25, 2026
74 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
49:92:4F:91:AA:91:B0:B8:A1:18:E3:B7:27:31:3A:97:3B:04:D7:FF:2E:6F:BE:AE:CF:22:D6:27:11:C3:DE:BD
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
musicassertanejas.com
*.musicassertanejas.com
*.insurance.musicassertanejas.com
*.radio.musicassertanejas.com
*.webmail.musicassertanejas.com
*.ww2.musicassertanejas.com
*.www-1.musicassertanejas.com
amaroohotel.com.au
*.amaroohotel.com.au
*.ww38.amaroohotel.com.au
bluemoontheatres.com
*.bluemoontheatres.com
*.ww25.bluemoontheatres.com
*.ww38.bluemoontheatres.com
*.5gya.boug.com
*.admin.boug.com
boug.com
*.boug.com
*.ww38.boug.com
statement.com.de
*.statement.com.de
datawarehouseg.space
*.datawarehouseg.space
*.ns1.datawarehouseg.space
*.ns2.datawarehouseg.space
*.random.datawarehouseg.space
*.www.datawarehouseg.space
*.admin.elagta.site
*.backend.elagta.site
elagta.site
*.elagta.site
*.38.gmkits5.com
gmkits5.com
*.gmkits5.com
*.m.gmkits5.com
*.ww25.gmkits5.com
*.256s.huku.com
*.3zm.huku.com
*.69shu.huku.com
*.auth.huku.com
*.bbs.huku.com
*.cnjd.huku.com
*.help.huku.com
huku.com
*.huku.com
*.ixs.huku.com
*.keastian.huku.com
*.luoqiuzw.huku.com
*.mann-stewart-help.huku.com
*.mx1.huku.com
*.pingan.huku.com
*.prod.huku.com
*.random.huku.com
*.secure.huku.com
*.wanbar.huku.com
*.ww.huku.com
*.ww25.huku.com
*.ww38.huku.com
*.com.koolhealthy.com
koolhealthy.com
*.koolhealthy.com
maximizeloja.com.br
*.maximizeloja.com.br
*.seguro.maximizeloja.com.br
purchasedomain.com.au
*.purchasedomain.com.au
*.random.purchasedomain.com.au
*.acstrading.webtechexports.in
*.bolivianhealthcare.webtechexports.in
*.bookin.webtechexports.in
*.com.webtechexports.in
*.ecommerce.webtechexports.in
*.indianlegalconsultants.webtechexports.in
*.krishnaplasticindustries.webtechexports.in
*.maya.webtechexports.in
*.mpibhiwani.webtechexports.in
*.noorsultanindustries.webtechexports.in
*.pramilas.webtechexports.in
*.shristab.webtechexports.in
*.srretails.webtechexports.in
*.vgproduct.webtechexports.in
*.vnv.webtechexports.in
*.vschemi.webtechexports.in
webtechexports.in
*.webtechexports.in
*.ww25.yyaus.xyz
*.www.yyaus.xyz
*.x.yyaus.xyz
yyaus.xyz
*.yyaus.xyz
Other domains in certificate