Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=benvianschools.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 15, 2026
Valid Until
April 15, 2026
49 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
82:65:DC:9A:E6:08:4F:17:FB:73:97:EF:A9:5B:91:15:54:AA:E0:B9:C8:98:8A:85:C9:32:40:A4:B9:88:2A:15
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
flo.cm
*.flo.cm
*.cm.flo.cm
*.ftp.flo.cm
*.mailserver.flo.cm
*.mailx.flo.cm
*.ns1.flo.cm
*.parola.flo.cm
*.server.flo.cm
*.workplace.flo.cm
*.ww38.flo.cm
00ay392tz5juwh7.sbs
*.00ay392tz5juwh7.sbs
*.22mhz.8xjhhstik.top
8xjhhstik.top
*.8xjhhstik.top
*.e8jdbcw.8xjhhstik.top
*.goef46.8xjhhstik.top
*.id6ofue.8xjhhstik.top
*.ox3m.8xjhhstik.top
*.rmd40.8xjhhstik.top
accfei.org
*.accfei.org
ankursharma.org
*.ankursharma.org
*.api.benvianschools.com
benvianschools.com
*.benvianschools.com
blisscliquet.info
*.blisscliquet.info
*.ww25.blisscliquet.info
*.cdn.chiper.io
chiper.io
*.chiper.io
*.cpanel.chiper.io
*.cpcalendars.chiper.io
*.fury.chiper.io
*.mail.chiper.io
*.restapi.chiper.io
*.secure.chiper.io
*.webdisk.chiper.io
*.webmail.chiper.io
clothessnap.com
*.clothessnap.com
dukemproperties.com
*.dukemproperties.com
*.www.dukemproperties.com
payetb.com
*.payetb.com
potatoday.org
*.potatoday.org
*.eaglecrest.redesk.com
*.lansigrec.redesk.com
*.parksandrec.redesk.com
*.ponchatoularec.redesk.com
redesk.com
*.redesk.com
*.store.tamplate.net
tamplate.net
*.tamplate.net
*.hostmaster.wiringkits.xyz
*.mail.wiringkits.xyz
wiringkits.xyz
*.wiringkits.xyz
wwtjgdrdddgtri22gd321.in
*.wwtjgdrdddgtri22gd321.in
*.3.zone-stream.net
*.cour.zone-stream.net
*.cpanel.zone-stream.net
*.cpcontacts.zone-stream.net
*.dakda.zone-stream.net
*.dev.zone-stream.net
*.img.zone-stream.net
*.random.zone-stream.net
*.wvv.zone-stream.net
*.wvw.zone-stream.net
*.ww1.zone-stream.net
*.ww2.zone-stream.net
*.ww25.zone-stream.net
*.ww38.zone-stream.net
*.wwv.zone-stream.net
*.www.zone-stream.net
*.www2.zone-stream.net
*.www3.zone-stream.net
*.www4.zone-stream.net
*.www5.zone-stream.net
zone-stream.net
*.zone-stream.net
*.zone.zone-stream.net
Other domains in certificate