Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=corallodisco.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
January 08, 2026
Valid Until
April 08, 2026
42 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C5:00:1D:FF:8B:BF:B3:67:E3:79:60:17:B8:ED:9C:3D:DA:AD:69:44:5E:4B:53:2E:2D:0D:08:E2:5D:39:25:EF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
snushuttles.com
*.snushuttles.com
*.portal.snushuttles.com
*.ww25.snushuttles.com
australianbusinessgrants.com.au
*.australianbusinessgrants.com.au
*.hostmaster.australianbusinessgrants.com.au
*.online.australianbusinessgrants.com.au
*.www.australianbusinessgrants.com.au
belonging.company
*.belonging.company
bilaltarder.online
*.bilaltarder.online
*.ww38.bilaltarder.online
breeze-offers.click
*.breeze-offers.click
cloudautomation.com.au
*.cloudautomation.com.au
*.cpanel.cloudautomation.com.au
co-create.solutions
*.co-create.solutions
*.ww25.co-create.solutions
corallodisco.com
*.corallodisco.com
*.staging.corallodisco.com
*.website.corallodisco.com
denis-tricot.com
*.denis-tricot.com
*.random.denis-tricot.com
esgirgola.com
*.esgirgola.com
fflaschenpost.de
*.fflaschenpost.de
grandpowe.eu
*.grandpowe.eu
grow-up-deals.click
*.grow-up-deals.click
handledealstoday.click
*.handledealstoday.click
handlenow.click
*.handlenow.click
hotelporto.click
*.hotelporto.click
izobilie.live
*.izobilie.live
laceoffers.xyz
*.laceoffers.xyz
liberatingdiscounts.click
*.liberatingdiscounts.click
liberatinglife.xyz
*.liberatinglife.xyz
limitlessoffer.click
*.limitlessoffer.click
manrepository.com
*.manrepository.com
*.ww25.manrepository.com
*.www.manrepository.com
mobile-360.co.uk
*.mobile-360.co.uk
motion-in-deals.xyz
*.motion-in-deals.xyz
motionindealsnow.click
*.motionindealsnow.click
panen123shop.click
*.panen123shop.click
plentydealstoday.click
*.plentydealstoday.click
re-vi-wing.click
*.re-vi-wing.click
replaceoffers.click
*.replaceoffers.click
*.api.sisokko.site
*.deneme.sisokko.site
*.earn.sisokko.site
sisokko.site
*.sisokko.site
skony.studio
*.skony.studio
streetdiscounts.click
*.streetdiscounts.click
theaffirmed.click
*.theaffirmed.click
triggeroffers.click
*.triggeroffers.click
unbeatabledeal.click
*.unbeatabledeal.click
unlimitedoffers.click
*.unlimitedoffers.click
xfactoraustralia.com.au
*.xfactoraustralia.com.au
Other domains in certificate