Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=stepsolutions.net
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 15, 2026
Valid Until
July 14, 2026
64 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
45:1D:0E:95:43:85:39:2B:3F:BE:50:64:F4:5A:45:1D:D1:CE:6C:7C:74:95:81:4B:02:C6:36:88:58:4B:1C:6D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
bcnn.net
*.bcnn.net
*.ww16.bcnn.net
*.ww38.bcnn.net
4freecle.com
*.4freecle.com
4mteamehub.com
*.4mteamehub.com
*.hostmaster.4mteamehub.com
cargamovil.es
*.cargamovil.es
diamondstuds.au
*.diamondstuds.au
*.random.diamondstuds.au
krispykream.com
*.krispykream.com
linhunyun.com
*.linhunyun.com
*.analytic.lycamobil.ch
*.kafka.lycamobil.ch
lycamobil.ch
*.lycamobil.ch
*.pipeline.lycamobil.ch
*.pos.lycamobil.ch
*.beta.mnconsultants.com
*.blog.mnconsultants.com
*.demo.mnconsultants.com
*.hostmaster.mnconsultants.com
*.m.mnconsultants.com
*.mail10.mnconsultants.com
*.mail9.mnconsultants.com
*.mailhost.mnconsultants.com
mnconsultants.com
*.mnconsultants.com
*.ms.mnconsultants.com
*.mx2.mnconsultants.com
*.ns.mnconsultants.com
*.ost.mnconsultants.com
*.relay2.mnconsultants.com
*.server1.mnconsultants.com
*.server2.mnconsultants.com
*.smtpauth.mnconsultants.com
*.wildcard.mnconsultants.com
*.ww1.mnconsultants.com
*.ww11.mnconsultants.com
*.ww16.mnconsultants.com
*.ww17.mnconsultants.com
*.ww25.mnconsultants.com
*.ww38.mnconsultants.com
*.www.mnconsultants.com
*.ylukrpqi.mnconsultants.com
newspanama.com
*.newspanama.com
nrplade.net
*.nrplade.net
*.ww25.nrplade.net
*.ww38.nrplade.net
onlinesavingscard.com
*.onlinesavingscard.com
*.random.onlinesavingscard.com
*.ww17.onlinesavingscard.com
*.autodiscover.outclook.com
*.comune.outclook.com
*.med.outclook.com
*.mx.outclook.com
outclook.com
*.outclook.com
*.protection.outclook.com
*.ww16.outclook.com
pahis.com
*.pahis.com
philipienen.de
*.philipienen.de
ramada-berlin-mitte.de
*.ramada-berlin-mitte.de
*.hostmaster.sansoftware.info
*.jenkins.sansoftware.info
*.preview.sansoftware.info
sansoftware.info
*.sansoftware.info
*.hostmaster.stepsolutions.net
stepsolutions.net
*.stepsolutions.net
*.www.stepsolutions.net
*.hostmaster.truckingmovershilo.com
truckingmovershilo.com
*.truckingmovershilo.com
*.www.truckingmovershilo.com
xn--rolleranhnger-jfb.de
*.xn--rolleranhnger-jfb.de
Other domains in certificate