Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=home-renovation.biz
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 16, 2026
Valid Until
August 14, 2026
87 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BE:9E:80:AD:35:75:D5:BF:9D:77:D2:C9:DC:08:33:5A:46:02:E3:E9:8D:5C:53:45:53:9D:D8:F5:40:DE:C4:80
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
spraklight.com
*.spraklight.com
*.costmer.spraklight.com
*.random.spraklight.com
*.ww38.spraklight.com
bricsvalue.art
*.bricsvalue.art
*.citrix.bricsvalue.art
*.jabber.bricsvalue.art
*.rds1.bricsvalue.art
dinnerrecipesguide.site
*.dinnerrecipesguide.site
*.m.dinnerrecipesguide.site
*.cpcontacts.ethdelala.com
ethdelala.com
*.ethdelala.com
*.app.home-renovation.biz
*.ekt1ji.home-renovation.biz
home-renovation.biz
*.home-renovation.biz
*.random.home-renovation.biz
*.testing.home-renovation.biz
*.ww1.home-renovation.biz
*.ww12.home-renovation.biz
*.ww7.home-renovation.biz
*.autodiscover.leopoldopticsnow.com
*.cpanel.leopoldopticsnow.com
*.ftp.leopoldopticsnow.com
leopoldopticsnow.com
*.leopoldopticsnow.com
*.webdisk.leopoldopticsnow.com
*.webmail.leopoldopticsnow.com
libeeo.it
*.libeeo.it
*.hostmaster.murbelovin.cfd
murbelovin.cfd
*.murbelovin.cfd
*.sitemap.murbelovin.cfd
*.sitemaps.murbelovin.cfd
*.1bw1hk.nbaa.lat
nbaa.lat
*.nbaa.lat
*.admin.prontocontrotermine.it
*.backend.prontocontrotermine.it
*.dash.prontocontrotermine.it
prontocontrotermine.it
*.prontocontrotermine.it
*.agmwuv2.quantumaiobjective.com
*.app.quantumaiobjective.com
*.backup.quantumaiobjective.com
*.bodeglyk.quantumaiobjective.com
*.dashboard.quantumaiobjective.com
*.demo.quantumaiobjective.com
*.dev.quantumaiobjective.com
*.external.quantumaiobjective.com
*.mail.quantumaiobjective.com
*.my.quantumaiobjective.com
*.new.quantumaiobjective.com
*.nxekwdol.quantumaiobjective.com
*.portal.quantumaiobjective.com
*.public.quantumaiobjective.com
*.qa.quantumaiobjective.com
quantumaiobjective.com
*.quantumaiobjective.com
*.secure.quantumaiobjective.com
*.share.quantumaiobjective.com
*.sharepoint.quantumaiobjective.com
*.staging.quantumaiobjective.com
*.v1.quantumaiobjective.com
*.v2.quantumaiobjective.com
*.vpn.quantumaiobjective.com
*.web.quantumaiobjective.com
*.hostmaster.richmotoruae.co
richmotoruae.co
*.richmotoruae.co
*.cbop.wok.be
*.master.wok.be
*.random.wok.be
*.smol.wok.be
*.sta.wok.be
wok.be
*.wok.be
workingshopspobdorka.com
*.workingshopspobdorka.com
xc104.shop
*.xc104.shop
*.cpanel.yovivoenelvalle.com
*.cpcalendars.yovivoenelvalle.com
yovivoenelvalle.com
*.yovivoenelvalle.com
Other domains in certificate