Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=123berlin.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 15, 2026
Valid Until
July 14, 2026
64 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4C:DF:A4:B2:30:38:03:09:8E:22:31:D1:FD:58:FC:0A:A6:BC:3C:FF:45:71:9D:06:68:E8:69:CB:69:19:AA:8B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
tapcheckperks.com
*.tapcheckperks.com
*.a.tapcheckperks.com
*.a06f261f-b23e-40ae-9f98-394cce27cd2f.tapcheckperks.com
*.api.tapcheckperks.com
*.app.tapcheckperks.com
*.boutique.tapcheckperks.com
*.cloud.tapcheckperks.com
*.data.tapcheckperks.com
*.dev.tapcheckperks.com
*.en.tapcheckperks.com
*.intranet.tapcheckperks.com
*.landing.tapcheckperks.com
*.m.tapcheckperks.com
*.mail.tapcheckperks.com
*.mymail.tapcheckperks.com
*.pixel.tapcheckperks.com
*.portal.tapcheckperks.com
*.public.tapcheckperks.com
*.rdweb.tapcheckperks.com
*.remote.tapcheckperks.com
*.test.tapcheckperks.com
*.vpn.tapcheckperks.com
*.webmail.tapcheckperks.com
*.xhtjjboutique.tapcheckperks.com
123berlin.com
*.123berlin.com
*.assets.123berlin.com
*.hostmaster.123berlin.com
*.2.ukaerialsat.com
*.9.ukaerialsat.com
*.a.ukaerialsat.com
*.acceso.ukaerialsat.com
*.adfs.ukaerialsat.com
*.applications.ukaerialsat.com
*.b1tqvo2e.ukaerialsat.com
*.c.ukaerialsat.com
*.careers.ukaerialsat.com
*.citrixcloud.ukaerialsat.com
*.clientesvpn.ukaerialsat.com
*.cloud.ukaerialsat.com
*.cloud2.ukaerialsat.com
*.cloudapp.ukaerialsat.com
*.cntdouk.ukaerialsat.com
*.dean.ukaerialsat.com
*.drvpn.ukaerialsat.com
*.ep.ukaerialsat.com
*.est-vpn.ukaerialsat.com
*.firewall.ukaerialsat.com
*.fortigate.ukaerialsat.com
*.fortinet.ukaerialsat.com
*.fortivpn.ukaerialsat.com
*.ftp.ukaerialsat.com
*.gitlab.ukaerialsat.com
*.go.ukaerialsat.com
*.h.ukaerialsat.com
*.homeoffice.ukaerialsat.com
*.imaps.ukaerialsat.com
*.incoming.ukaerialsat.com
*.kchgtcntdouk.ukaerialsat.com
*.login1.ukaerialsat.com
*.m.ukaerialsat.com
*.mails.ukaerialsat.com
*.mywebmail.ukaerialsat.com
*.ogrencieposta.ukaerialsat.com
*.qbe.ukaerialsat.com
*.rds1.ukaerialsat.com
*.rdweb1.ukaerialsat.com
*.remote.ukaerialsat.com
*.scloud.ukaerialsat.com
*.secure.ukaerialsat.com
*.secureportal.ukaerialsat.com
*.server.ukaerialsat.com
*.sign.ukaerialsat.com
*.ssl2.ukaerialsat.com
*.ssl3.ukaerialsat.com
*.terminal1.ukaerialsat.com
ukaerialsat.com
*.ukaerialsat.com
*.vpn-ext.ukaerialsat.com
*.vpn-portal.ukaerialsat.com
*.vpn2.ukaerialsat.com
*.vpn3.ukaerialsat.com
*.vpn5a.ukaerialsat.com
*.vpn5b.ukaerialsat.com
*.vpnssl.ukaerialsat.com
*.webdisk.ukaerialsat.com
*.webmail05.ukaerialsat.com
*.workspace.ukaerialsat.com
Other domains in certificate