Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=connectedhomelock.info
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 16, 2026
Valid Until
July 15, 2026
54 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
57:52:17:DC:8E:25:41:64:3D:D9:B5:04:27:36:94:42:B7:E9:95:7A:8A:3F:EE:B1:B5:10:33:3F:19:82:A2:4E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
salts.studio
*.salts.studio
119434.com
*.119434.com
21014.one
*.21014.one
27439.mobi
*.27439.mobi
28da.cc
*.28da.cc
2k8g9.top
*.2k8g9.top
4mulsh.shop
*.4mulsh.shop
51826.pet
*.51826.pet
52980.plus
*.52980.plus
5969.loan
*.5969.loan
brandepoxy.com
*.brandepoxy.com
bridgette.us
*.bridgette.us
bs2gazsei3woq.cc
*.bs2gazsei3woq.cc
*.aol.comkohls.com
*.cnbc.comkohls.com
*.comebay.comkohls.com
*.cometsy.comkohls.com
comkohls.com
*.comkohls.com
*.comtarget.comkohls.com
*.comvictoriassecret.comkohls.com
*.comwalmart.comkohls.com
*.comwish.comkohls.com
*.delta.comkohls.com
*.ebay.comkohls.com
*.google.comkohls.com
*.instagram.comkohls.com
*.kohls.comkohls.com
*.microsoft.comkohls.com
*.mtb.comkohls.com
*.penneys.comkohls.com
*.publix.comkohls.com
*.qihoo.comkohls.com
*.sweetiesdessertbuffets.comkohls.com
*.target.comkohls.com
*.totalgymdirect.comkohls.com
*.yahoo.comkohls.com
connectedhomelock.info
*.connectedhomelock.info
*.iyl.connectedhomelock.info
ipd12q.top
*.ipd12q.top
itsvestusstudio.biz
*.itsvestusstudio.biz
k47h.com
*.k47h.com
luckys.one
*.luckys.one
patwing.com
*.patwing.com
poker88gacor2025.sbs
*.poker88gacor2025.sbs
practicable.org
*.practicable.org
premiacoesbj.com
*.premiacoesbj.com
pt777nias.xyz
*.pt777nias.xyz
purocleanmichigan.de
*.purocleanmichigan.de
rbrmechapa.com
*.rbrmechapa.com
rockbuilttrailers.com
*.rockbuilttrailers.com
schoolsponsoringregionjm.com
*.schoolsponsoringregionjm.com
schoolsponsoringregionjx.com
*.schoolsponsoringregionjx.com
sfskj.click
*.sfskj.click
smokebucks.com
*.smokebucks.com
sukaudiz.com
*.sukaudiz.com
summeragentic.com
*.summeragentic.com
Other domains in certificate