Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=haljones.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 12, 2026
Valid Until
May 13, 2026
84 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
76:10:61:C5:C9:F8:18:7B:34:CC:7A:05:1A:92:21:28:C8:4A:3B:E4:E2:35:35:23:2E:2B:62:9F:3A:B4:1E:B5
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
startit.com
*.startit.com
*.x.startit.com
2612.it
*.2612.it
*.4072.2612.it
*.bigdata.2612.it
*.dashboard.2612.it
*.dashboards.2612.it
*.metrics.2612.it
*.supersets.2612.it
*.admin.cronocom.com
*.anphkportal.cronocom.com
*.api.cronocom.com
*.assets.cronocom.com
*.backup.cronocom.com
cronocom.com
*.cronocom.com
*.demo.cronocom.com
*.dev.cronocom.com
*.docs.cronocom.com
*.external.cronocom.com
*.fawbcrdweb.cronocom.com
*.ffcdlfxjlbrds.cronocom.com
*.files.cronocom.com
*.hostmaster.cronocom.com
*.intranet.cronocom.com
*.m.cronocom.com
*.notexistshostmaster.cronocom.com
*.portal.cronocom.com
*.public.cronocom.com
*.rds.cronocom.com
*.rdweb.cronocom.com
*.shop.cronocom.com
*.store.cronocom.com
*.test.cronocom.com
*.testing.cronocom.com
*.vpn.cronocom.com
*.ww6.cronocom.com
*.asa.haljones.com
*.ciscovpn.haljones.com
*.cloudvpn.haljones.com
*.connect.haljones.com
*.control.haljones.com
*.ftp.haljones.com
*.gateway.haljones.com
haljones.com
*.haljones.com
*.hwyzqcpcontacts.haljones.com
*.mall.haljones.com
*.money.haljones.com
*.nsb.haljones.com
*.owa.haljones.com
*.ravpn.haljones.com
*.remote.haljones.com
*.s8.haljones.com
*.saga.haljones.com
*.samara.haljones.com
*.security.haljones.com
*.sitemap.haljones.com
*.ssl.haljones.com
*.static1.haljones.com
*.test2.haljones.com
*.tv.haljones.com
*.ul.haljones.com
*.usa.haljones.com
*.vcs.haljones.com
*.vera.haljones.com
*.videoconf.haljones.com
*.vision.haljones.com
*.webspace.haljones.com
*.webtest.haljones.com
*.widget.haljones.com
*.world.haljones.com
*.ww1.haljones.com
*.ww16.haljones.com
*.x.haljones.com
slx.au
*.slx.au
*.com.watcheuropa.com
watcheuropa.com
*.watcheuropa.com
*.ww38.watcheuropa.com
*.sup.xn--riq74zmsjg0mhs7b.net
xn--riq74zmsjg0mhs7b.net
*.xn--riq74zmsjg0mhs7b.net
*.www.zeune.de
zeune.de
*.zeune.de
Other domains in certificate