Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=thenantwichclinic.co
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 28, 2026
Valid Until
August 26, 2026
71 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
51:BB:9E:7A:93:14:D4:40:F2:01:C2:67:57:15:6E:7A:A1:8D:10:71:ED:50:9D:FE:ED:4E:3D:1C:B4:8E:B4:72
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
taxirobot.app
*.taxirobot.app
*.364d9c3b-124e-4684-8833-65c640e2aacb.taxirobot.app
*.admin.taxirobot.app
*.assets.taxirobot.app
*.demo.taxirobot.app
*.rustore.taxirobot.app
05136.co
*.05136.co
*.014w8.crispyrice.xyz
*.0u12d.crispyrice.xyz
*.1846m.crispyrice.xyz
*.2dbks.crispyrice.xyz
*.2l6wm.crispyrice.xyz
*.367eee9b-bdc6-4db1-99fd-1462a27d4a8a.crispyrice.xyz
*.87ab5.crispyrice.xyz
*.8hy5t.crispyrice.xyz
*.95vhx.crispyrice.xyz
*.admin.crispyrice.xyz
*.alpha.crispyrice.xyz
*.assets.crispyrice.xyz
*.cc061a55-f96d-42aa-bf2a-9106cc804b6c.crispyrice.xyz
*.cg4o5.crispyrice.xyz
*.civoh.crispyrice.xyz
crispyrice.xyz
*.crispyrice.xyz
*.cuyk.crispyrice.xyz
*.cwofnapp.crispyrice.xyz
*.d.crispyrice.xyz
*.d63f0787-3fbf-488e-bd88-8d3ce610c7d1.crispyrice.xyz
*.demo.crispyrice.xyz
*.dev.crispyrice.xyz
*.e40c2743-fa54-4fda-8f08-5a06b2fd2d1c.crispyrice.xyz
*.fcvkr.crispyrice.xyz
*.fdb74.crispyrice.xyz
*.fgwjkayfpk.crispyrice.xyz
*.gjdvb.crispyrice.xyz
*.hgsq5.crispyrice.xyz
*.kac0t.crispyrice.xyz
*.krjpk4qwa0.crispyrice.xyz
*.l1v3f.crispyrice.xyz
*.lbcp6.crispyrice.xyz
*.members.crispyrice.xyz
*.nan1j.crispyrice.xyz
*.new.crispyrice.xyz
*.niw2v.crispyrice.xyz
*.o7p4x.crispyrice.xyz
*.pwb3b.crispyrice.xyz
*.shdkemembers.crispyrice.xyz
*.ssh.crispyrice.xyz
*.tvdcfassets.crispyrice.xyz
*.uszpkzruod.crispyrice.xyz
*.y6iui.crispyrice.xyz
*.zruod.crispyrice.xyz
*.admin.crossflow.it
*.autodiscover.crossflow.it
*.cpcalendars.crossflow.it
*.cpcontacts.crossflow.it
crossflow.it
*.crossflow.it
*.dash.crossflow.it
*.dashboards.crossflow.it
*.dev.crossflow.it
*.mail.crossflow.it
*.metrics.crossflow.it
*.redash.crossflow.it
*.reporting.crossflow.it
*.supersets.crossflow.it
*.webmail.crossflow.it
*.ads.e-flightrc.com
e-flightrc.com
*.e-flightrc.com
*.travel.e-flightrc.com
*.www.e-flightrc.com
*.6bfio.jiuguanjia.com.cn
jiuguanjia.com.cn
*.jiuguanjia.com.cn
*.qxf8b.jiuguanjia.com.cn
*.w3x.jiuguanjia.com.cn
lwgne.top
*.lwgne.top
*.www.lwgne.top
mytollbrotherhome.com
*.mytollbrotherhome.com
*.beta.phygital.black
phygital.black
*.phygital.black
*.shopunwrapped.thenantwichclinic.co
thenantwichclinic.co
*.thenantwichclinic.co
Other domains in certificate