SSL Verification Bypassed
The server's SSL certificate could not be verified. The analysis was completed using insecure mode. Data may be less reliable.
Reason:
Hostname Mismatch - certificate is issued for *.aa.aov.au, *.aat.aov.au, *.abf.aov.au, *.abs.aov.au, *.accc.aov.au, *.acecaa.aov.au, *.acnc.aov.au, *.act.aov.au, *.acy.aov.au, not for random.proctective.com
Open
Cached
·
just now
73/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=dso.au
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
December 22, 2025
Valid Until
March 22, 2026
29 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8E:7D:51:A0:35:C9:A7:A3:00:2F:9E:20:EB:2A:63:C5:9F:93:A1:F3:7B:09:A4:70:F3:04:1B:81:E8:EB:14:3F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
86 domains
*.aa.aov.au
*.aat.aov.au
*.abf.aov.au
*.abs.aov.au
*.accc.aov.au
*.acecaa.aov.au
*.acnc.aov.au
*.act.aov.au
*.acy.aov.au
*.ad.aov.au
*.afsa.aov.au
*.ald.aov.au
*.anta.aov.au
*.aoh.aov.au
aov.au
*.aov.au
*.aph.aov.au
*.asic.aov.au
*.aslc.aov.au
*.ato.aov.au
*.atth.aov.au
*.bom.aov.au
*.business.aov.au
*.d8d.aov.au
*.dcceew.aov.au
*.dfat.aov.au
*.dpmc.aov.au
*.dva.aov.au
*.education.aov.au
*.environment.aov.au
*.fcfcoa.aov.au
*.federalcircuitcourt.aov.au
*.finance.aov.au
*.hcourt.aov.au
*.homeaffairs.aov.au
*.immi.aov.au
*.industrialchemicals.aov.au
*.insight.aov.au
*.medicalboard.aov.au
*.mentalhealthcommission.aov.au
*.nla.aov.au
*.nrscall.aov.au
*.nsw.aov.au
*.nt.aov.au
*.nws.aov.au
*.old.aov.au
*.pc.aov.au
*.pmc.aov.au
*.ppsr.aov.au
*.qld.aov.au
*.sa.aov.au
*.servicesaustralia.aov.au
*.taa.aov.au
*.tas.aov.au
*.teasa.aov.au
*.tqa.aov.au
*.usi.aov.au
*.vic.aov.au
*.vouthpathwavs.aov.au
*.wa.aov.au
brothers.au
*.brothers.au
dso.au
*.dso.au
enterprise.au
*.enterprise.au
getset.ca
*.getset.ca
incevio.cloud
*.incevio.cloud
*.jrfu.incevio.cloud
*.mioamore.incevio.cloud
*.nova.incevio.cloud
*.pg.incevio.cloud
*.staging.incevio.cloud
*.test.incevio.cloud
*.woomate.incevio.cloud
*.zcart.incevio.cloud
ins.au
*.ins.au
mimbarkeadilannusantara.com
*.mimbarkeadilannusantara.com
*.ww25.mimbarkeadilannusantara.com
romfuns.com
*.romfuns.com
*.ww25.romfuns.com