Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=shop-at-ease.net
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
January 13, 2026
Valid Until
April 13, 2026
56 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7D:BB:E8:35:EA:19:DA:AE:F7:51:4F:83:7A:77:99:4E:2C:7B:D7:EC:27:AE:69:3E:6F:23:53:84:07:A6:3F:5E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
tinyworld.com
*.tinyworld.com
*.mail.tinyworld.com
*.rlsbj.tinyworld.com
*.52cdaeea-038e-4945-9cf4-9e151055e60d.acweb.studio
*.account.acweb.studio
acweb.studio
*.acweb.studio
*.adm.acweb.studio
*.api.acweb.studio
*.app.acweb.studio
*.backend.acweb.studio
*.rustore.acweb.studio
anesthesie.de
*.anesthesie.de
aquarienbecken.de
*.aquarienbecken.de
brasserie.au
*.brasserie.au
businessconsultants.au
*.businessconsultants.au
charterbox.co.uk
*.charterbox.co.uk
clouditsolutions.au
*.clouditsolutions.au
dadmo.com
*.dadmo.com
danmackeyrealestateloanexpert.com
*.danmackeyrealestateloanexpert.com
*.pay.danmackeyrealestateloanexpert.com
dvditalia.net
*.dvditalia.net
economicstimulusbills.com
*.economicstimulusbills.com
ephus.org
*.ephus.org
expeditepassport.com
*.expeditepassport.com
familyvaluemagazine.com
*.familyvaluemagazine.com
giannamichaels.com
*.giannamichaels.com
golden14.com
*.golden14.com
*.www.golden14.com
ieltspapaen.com
*.ieltspapaen.com
*.estesmorgan-littlemary.jovn.com
jovn.com
*.jovn.com
*.us.jovn.com
luggageaustralia.com.au
*.luggageaustralia.com.au
*.random.luggageaustralia.com.au
militaria-house.com
*.militaria-house.com
nightingalebeefsteakcatering.com
*.nightingalebeefsteakcatering.com
philosopie.de
*.philosopie.de
redux.au
*.redux.au
sbornik-music.ru
*.sbornik-music.ru
shop-at-ease.net
*.shop-at-ease.net
spoke.au
*.spoke.au
stropreisvergleich.de
*.stropreisvergleich.de
thekingsarmsoreston.co.uk
*.thekingsarmsoreston.co.uk
tonyspizzaeventcenter.com
*.tonyspizzaeventcenter.com
tourship.com
*.tourship.com
*.adsonair.withgooge.com
*.experiments.withgooge.com
*.learndigital.withgooge.com
*.learndingital.withgooge.com
*.phishingquiz.withgooge.com
*.quickdrsw.withgooge.com
*.skillshop.withgooge.com
*.testkitchen.withgooge.com
withgooge.com
*.withgooge.com
xn--teflonschluche-fib.de
*.xn--teflonschluche-fib.de
xvideos-sokunuki.com
*.xvideos-sokunuki.com
Other domains in certificate