Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=bernazza.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 04, 2026
Valid Until
May 05, 2026
79 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
09:35:32:AC:CA:24:A0:3D:F2:54:08:F3:2C:C9:9D:ED:E3:81:DC:7B:A3:39:C9:EF:0E:B6:9B:67:68:D6:42:FA
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
bernazza.com
*.bernazza.com
*.alpha.bernazza.com
*.cadastro.bernazza.com
368.live
*.368.live
*.app.368.live
*.dev.368.live
*.ww25.368.live
*.ww38.368.live
*.cpcontacts.fugentimes.news
fugentimes.news
*.fugentimes.news
*.webmail.fugentimes.news
*.animasi.gepics.com
*.auto.gepics.com
*.bintangku.gepics.com
*.buah.gepics.com
*.buku.gepics.com
*.burung.gepics.com
*.candi.gepics.com
*.catur.gepics.com
*.cincin.gepics.com
*.cinta.gepics.com
*.cuaca.gepics.com
*.cumi.gepics.com
*.daun.gepics.com
*.dj.gepics.com
*.domba.gepics.com
*.donat.gepics.com
*.draf.gepics.com
*.gambar.gepics.com
*.gambarr.gepics.com
gepics.com
*.gepics.com
*.gif.gepics.com
*.giff.gepics.com
*.gokil.gepics.com
*.hewan.gepics.com
*.hp.gepics.com
*.imut.gepics.com
*.kartun.gepics.com
*.kata.gepics.com
*.keren.gepics.com
*.kopi.gepics.com
*.lucu.gepics.com
*.mobil.gepics.com
*.mobill.gepics.com
*.mobils.gepics.com
*.mobilt.gepics.com
*.modif.gepics.com
*.modiff.gepics.com
*.motor.gepics.com
*.motord.gepics.com
*.motorku.gepics.com
*.motorr.gepics.com
*.motors.gepics.com
*.motort.gepics.com
*.populer.gepics.com
*.sketsa.gepics.com
*.stiker.gepics.com
*.terbaik.gepics.com
*.terbaru.gepics.com
*.terindah.gepics.com
*.thecno.gepics.com
*.toko.gepics.com
*.top.gepics.com
*.topp.gepics.com
*.variasi.gepics.com
*.variasii.gepics.com
*.vvariasi.gepics.com
*.walpaper.gepics.com
*.es.onelambdalegal.com
*.give.onelambdalegal.com
onelambdalegal.com
*.onelambdalegal.com
*.wildcard.onelambdalegal.com
*.analytics.pmv.cm
pmv.cm
*.pmv.cm
*.wildcard.pmv.cm
*.ww25.pmv.cm
*.ww38.pmv.cm
*.app.skin-health.online
*.crm.skin-health.online
*.sitemaps.skin-health.online
skin-health.online
*.skin-health.online
*.test.skin-health.online
Other domains in certificate