Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=statvisit.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 30, 2026
Valid Until
July 29, 2026
62 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C0:86:69:4A:E4:1C:08:CD:F2:7E:29:00:25:32:EC:5C:33:DD:D1:18:FB:A8:30:26:CF:CA:04:52:A1:D5:C4:4B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
statvisit.com
*.statvisit.com
*.calendar.statvisit.com
*.fax.statvisit.com
*.ftp.statvisit.com
*.imap.statvisit.com
*.mail.statvisit.com
*.sitemap.statvisit.com
anitechnology.com
*.anitechnology.com
*.webdisk.anitechnology.com
*.webmail.anitechnology.com
*.www.anitechnology.com
bito.live
*.bito.live
chocolategiunti.com.br
*.chocolategiunti.com.br
*.cpcontacts.dekofur.com
dekofur.com
*.dekofur.com
diyarofoso.online
*.diyarofoso.online
*.random.diyarofoso.online
*.rvlskzeccl3046rx.diyarofoso.online
*.backend.doorsystem.it
doorsystem.it
*.doorsystem.it
*.mx.doorsystem.it
*.reports.doorsystem.it
*.staging.doorsystem.it
elenacafe.co.uk
*.elenacafe.co.uk
*.shop.elenacafe.co.uk
*.7eo8i1.epiktravelagents.com
*.a6accebf-6c8a-4b69-9da3-ecbcf1e8e78e.epiktravelagents.com
*.api.epiktravelagents.com
epiktravelagents.com
*.epiktravelagents.com
*.hostmaster.epiktravelagents.com
*.test.epiktravelagents.com
*.backup.hodl.beer
*.dash.hodl.beer
*.dev.hodl.beer
hodl.beer
*.hodl.beer
*.members.hodl.beer
*.random.hodl.beer
*.staging.hodl.beer
httpsmyaccountgoogle.com
*.httpsmyaccountgoogle.com
*.akcis.infocareers.org
*.azcis.infocareers.org
*.idcis.infocareers.org
infocareers.org
*.infocareers.org
*.ma.infocareers.org
*.masscis.infocareers.org
*.masscls.infocareers.org
*.mcis.infocareers.org
*.nvcis.infocareers.org
*.ohcis.infocareers.org
*.sccis.infocareers.org
*.wejcs.infocareers.org
*.ww38.infocareers.org
mibex.io
*.mibex.io
*.webmail.mibex.io
*.ww38.mibex.io
nortonvnp.com
*.nortonvnp.com
*.ww12.nortonvnp.com
*.ww38.nortonvnp.com
psicologiaorganizacional.com.br
*.psicologiaorganizacional.com.br
restorecryowellness.com
*.restorecryowellness.com
*.32.sheffieldfinancial.co
*.ezpay.sheffieldfinancial.co
*.securecs.sheffieldfinancial.co
*.secures.sheffieldfinancial.co
sheffieldfinancial.co
*.sheffieldfinancial.co
*.ww25.sheffieldfinancial.co
*.ww38.sheffieldfinancial.co
*.secure.studiomassaggi.it
studiomassaggi.it
*.studiomassaggi.it
*.supersets.studiomassaggi.it
woonrijmond.nl
*.woonrijmond.nl
Other domains in certificate