Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=littlemissmetoomuch.net
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
December 28, 2025
Valid Until
March 28, 2026
45 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F4:2F:D3:72:8F:0D:D8:D3:60:93:0D:CD:26:EB:49:A8:0D:21:8D:B0:A3:EA:F2:DA:94:3C:3D:67:6D:E2:3D:D1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
75 domains
scan2web.com
*.scan2web.com
*.random.scan2web.com
ambersgarden.com
*.ambersgarden.com
*.oldmail.ambersgarden.com
ankita.com.au
*.ankita.com.au
*.ww38.ankita.com.au
arbnb.fr
*.arbnb.fr
*.hostmaster.arbnb.fr
*.ww2.arbnb.fr
blowmeupsexdoll.com
*.blowmeupsexdoll.com
*.ww38.blowmeupsexdoll.com
cmk.au
*.cmk.au
*.ww38.cmk.au
finjo.com
*.finjo.com
*.hostmaster.finjo.com
*.random.finjo.com
*.ww38.finjo.com
ghy.au
*.ghy.au
*.ww38.ghy.au
jadsmediaflw.com
*.jadsmediaflw.com
*.ws.jadsmediaflw.com
*.wss.jadsmediaflw.com
kajunbayoukennels.com
*.kajunbayoukennels.com
*.ww38.kajunbayoukennels.com
lacuenta.es
*.lacuenta.es
*.pasada.lacuenta.es
layar.digital
*.layar.digital
*.mail.layar.digital
linnmar.com
*.linnmar.com
*.random.linnmar.com
*.student.linnmar.com
*.com.littlemissmetoomuch.net
littlemissmetoomuch.net
*.littlemissmetoomuch.net
*.mamako.mandela.au
mandela.au
*.mandela.au
paylakewayticket.com
*.paylakewayticket.com
*.random.paylakewayticket.com
*.hostmaster.printablemeals.com
printablemeals.com
*.printablemeals.com
pulsaraircraft.com
*.pulsaraircraft.com
*.ww38.pulsaraircraft.com
*.hostmaster.robottrust.com
robottrust.com
*.robottrust.com
*.api.simantul.com
simantul.com
*.simantul.com
*.ptr9403.sito.live
sito.live
*.sito.live
*.w.xn--seluksports-o9a.com
*.www.xn--seluksports-o9a.com
xn--seluksports-o9a.com
*.xn--seluksports-o9a.com
*.random.xn--taschenbgel-0hb.de
xn--taschenbgel-0hb.de
*.xn--taschenbgel-0hb.de
Other domains in certificate