Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=boa2faverifyaccess.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 13, 2026
Valid Until
August 11, 2026
63 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
56:C8:D1:67:75:06:B7:76:19:DA:05:38:19:66:10:4E:8C:45:52:9B:AE:EF:E9:92:FC:B1:7B:B6:B5:0E:02:DA
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
bdbdt.one
*.bdbdt.one
baidu-v.com
*.baidu-v.com
biologie.blog
*.biologie.blog
boa2faverifyaccess.com
*.boa2faverifyaccess.com
bollu4u.org
*.bollu4u.org
crushautomations.com
*.crushautomations.com
dewa303online.com
*.dewa303online.com
didi51-f1027cc.com
*.didi51-f1027cc.com
hbljgd.cn
*.hbljgd.cn
hempdropshipping.com
*.hempdropshipping.com
herbalnedir.com
*.herbalnedir.com
heyuanwutongstory.com
*.heyuanwutongstory.com
hw79ga.cyou
*.hw79ga.cyou
itscontractor.click
*.itscontractor.click
jardinage.blog
*.jardinage.blog
opqruv.top
*.opqruv.top
paid-sperm-donation-3x3a0t8l1y6.sbs
*.paid-sperm-donation-3x3a0t8l1y6.sbs
pgdy.org
*.pgdy.org
policiaysociedad.org
*.policiaysociedad.org
powergroup.company
*.powergroup.company
praytoranimation.com
*.praytoranimation.com
purefitnesstrust.run
*.purefitnesstrust.run
rafaelvelasqueztudecano2025.com
*.rafaelvelasqueztudecano2025.com
ratingmama.com
*.ratingmama.com
ratingmama.info
*.ratingmama.info
reallifevalue.com
*.reallifevalue.com
remisecode.com
*.remisecode.com
reportwatch.xyz
*.reportwatch.xyz
rockfistreviews.com
*.rockfistreviews.com
sarangbola.shop
*.sarangbola.shop
scalemoscreative.work
*.scalemoscreative.work
senior-dental-care-ys9.click
*.senior-dental-care-ys9.click
touslescodecs.com
*.touslescodecs.com
trombline.com
*.trombline.com
trttopicals.com
*.trttopicals.com
twimeraknit.com
*.twimeraknit.com
water-damage-repair-ca-en-mtg.click
*.water-damage-repair-ca-en-mtg.click
wineaq.com
*.wineaq.com
workcasies.work
*.workcasies.work
wrjfzb.com
*.wrjfzb.com
xyfer.art
*.xyfer.art
yevgenyfundler.com
*.yevgenyfundler.com
yourpartnerforgrowth.com
*.yourpartnerforgrowth.com
ysgc.space
*.ysgc.space
zone-hl2.com
*.zone-hl2.com
Other domains in certificate