Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=bonella.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
March 27, 2026
Valid Until
June 25, 2026
32 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
6E:72:BF:D7:04:45:52:21:21:49:8A:47:B1:3A:49:44:72:A1:66:9D:C7:CF:38:7C:77:96:24:3C:51:73:65:BD
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
godeady.com
*.godeady.com
*.makina.godeady.com
*.s1.godeady.com
*.ww25.godeady.com
*.6.6688722.com
6688722.com
*.6688722.com
*.97323545-fc2a-4191-9d05-7f123db36f2d.6688722.com
*.cloud.6688722.com
*.external.6688722.com
*.intranet.6688722.com
*.members.6688722.com
*.portal.6688722.com
*.remote.6688722.com
*.sitemap.6688722.com
*.sitemaps.6688722.com
*.webdisk.6688722.com
*.wildcard.6688722.com
*.ww12.6688722.com
astrollogie.de
*.astrollogie.de
bike-discaunt.de
*.bike-discaunt.de
blackhat.com.au
*.blackhat.com.au
bonella.com
*.bonella.com
cartridgechoice.com
*.cartridgechoice.com
*.ww38.cartridgechoice.com
*.cdn.cescort.com
cescort.com
*.cescort.com
*.random.cescort.com
comical.com.au
*.comical.com.au
contactar.it
*.contactar.it
*.www.contactar.it
firebrigades.com.au
*.firebrigades.com.au
*.ww25.firebrigades.com.au
*.autodiscover.graveyardlovers.com
*.cpanel.graveyardlovers.com
graveyardlovers.com
*.graveyardlovers.com
*.hostmaster.graveyardlovers.com
*.mail.graveyardlovers.com
*.webdisk.graveyardlovers.com
*.webmail.graveyardlovers.com
*.www.graveyardlovers.com
ibooknook.com
*.ibooknook.com
kammerwinkel.de
*.kammerwinkel.de
laviniahair.com
*.laviniahair.com
*.wildcard.laviniahair.com
*.ww25.laviniahair.com
*.ww38.laviniahair.com
*.www.laviniahair.com
*.664670fe-22a2-45d1-babb-a7eb0460500f.phizpay.mx
*.admin.phizpay.mx
*.api.phizpay.mx
*.app.phizpay.mx
*.assets.phizpay.mx
*.backend.phizpay.mx
*.blog.phizpay.mx
*.dev.phizpay.mx
*.fdbd8a77-d62c-4dca-935f-c57ba5f790d2.phizpay.mx
*.hostmaster.phizpay.mx
phizpay.mx
*.phizpay.mx
*.test.phizpay.mx
privateinternetaccess.au
*.privateinternetaccess.au
*.hostmaster.replacenents.com
replacenents.com
*.replacenents.com
*.www.replacenents.com
*.7d9b8f79-8ba4-4820-bea8-992c5eff8792.wsacg.xyz
wsacg.xyz
*.wsacg.xyz
*.ww25.wsacg.xyz
*.ww38.wsacg.xyz
*.www.yzxgmd.cn
yzxgmd.cn
*.yzxgmd.cn
*.zv2v0u216.yzxgmd.cn
Other domains in certificate