Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=newyorkspiritualsomatictherapy.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 17, 2026
Valid Until
May 18, 2026
89 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5A:AD:D8:87:5D:58:EA:98:A4:AC:AC:72:F8:EE:9C:AD:4D:3A:73:70:86:4F:62:5C:6F:11:B0:4D:B4:FA:43:FF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
doidos.com
*.doidos.com
*.access.doidos.com
*.admin.doidos.com
*.api.doidos.com
*.blog.doidos.com
*.client.doidos.com
*.connectvpn.doidos.com
*.cpanel.doidos.com
*.dev.doidos.com
*.emv1.doidos.com
*.exchange.doidos.com
*.ftp.doidos.com
*.gateway.doidos.com
*.hostmaster.doidos.com
*.imap1.doidos.com
*.imap2.doidos.com
*.login.doidos.com
*.m.doidos.com
*.mail.doidos.com
*.mta-sts.doidos.com
*.office.doidos.com
*.poczta.doidos.com
*.pop.doidos.com
*.portal.doidos.com
*.rds.doidos.com
*.rds1.doidos.com
*.rdweb.doidos.com
*.remote.doidos.com
*.secureaccess.doidos.com
*.smtps.doidos.com
*.ssl.doidos.com
*.sslvpn.doidos.com
*.staging.doidos.com
*.test.doidos.com
*.vpn2.doidos.com
*.web.doidos.com
*.webconnect.doidos.com
*.webmail.doidos.com
*.ww25.doidos.com
*.ww38.doidos.com
*.ww41.doidos.com
b2bseo.net
*.b2bseo.net
*.m.b2bseo.net
*.app.fourniture.biz
*.dma.fourniture.biz
fourniture.biz
*.fourniture.biz
*.managedhsm-int.fourniture.biz
*.preprod.fourniture.biz
*.stream.fourniture.biz
gustogardens.com
*.gustogardens.com
*.hostmaster.gustogardens.com
*.m.gustogardens.com
*.api.hanenosuke.com
*.fnybmadmin.hanenosuke.com
hanenosuke.com
*.hanenosuke.com
*.m.hanenosuke.com
*.secure.hanenosuke.com
*.test.hanenosuke.com
*.tqnhhrd.hanenosuke.com
*.v2.hanenosuke.com
*.www.hanenosuke.com
*.analytic.mns.ch
*.backend.mns.ch
*.client.mns.ch
*.customer.mns.ch
*.forums.mns.ch
*.help.mns.ch
*.home.mns.ch
*.m.mns.ch
*.mc01.mns.ch
mns.ch
*.mns.ch
*.new.mns.ch
*.redash.mns.ch
*.wiki.mns.ch
*.admin.newyorkspiritualsomatictherapy.com
*.assets.newyorkspiritualsomatictherapy.com
*.backup.newyorkspiritualsomatictherapy.com
newyorkspiritualsomatictherapy.com
*.newyorkspiritualsomatictherapy.com
*.rds.newyorkspiritualsomatictherapy.com
*.rdweb.newyorkspiritualsomatictherapy.com
*.test.newyorkspiritualsomatictherapy.com
*.vpn.newyorkspiritualsomatictherapy.com
*.www.newyorkspiritualsomatictherapy.com
Other domains in certificate