Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=bellahair.co.uk
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
May 30, 2026
Valid Until
August 28, 2026
65 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
1A:C6:2F:48:4E:8C:E8:09:A1:40:C4:15:8E:A5:35:66:BE:01:33:3B:3F:A6:4A:ED:21:43:A0:36:37:DB:54:5F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
thefivereview.com
*.thefivereview.com
*.bybitglobal.thefivereview.com
*.fivechoose.thefivereview.com
*.online.thefivereview.com
*.site.thefivereview.com
*.store.thefivereview.com
*.thebestreview.thefivereview.com
*.tipsreview.thefivereview.com
*.topip.thefivereview.com
barrelwinebar.com
*.barrelwinebar.com
*.dbhowygmudvzx.barrelwinebar.com
*.m.barrelwinebar.com
*.portal.barrelwinebar.com
*.secure.barrelwinebar.com
*.sitemap.barrelwinebar.com
*.ygmudvzx.barrelwinebar.com
bellahair.co.uk
*.bellahair.co.uk
*.42gvbn.capitalone-invest.info
capitalone-invest.info
*.capitalone-invest.info
*.cloud.kappaletavara.com
*.hostmaster.kappaletavara.com
kappaletavara.com
*.kappaletavara.com
*.rd.kappaletavara.com
*.rds.kappaletavara.com
*.rdweb.kappaletavara.com
*.remote.kappaletavara.com
*.site1.kappaletavara.com
*.www.kappaletavara.com
movierulzhd.help
*.movierulzhd.help
*.www.movierulzhd.help
*.20dfd067-cfa4-4020-b325-12a83d7afbb8.my777r.com
*.demo.my777r.com
my777r.com
*.my777r.com
*.new.my777r.com
*.sitemap.my777r.com
*.www.my777r.com
newtonshealth.com
*.newtonshealth.com
*.www.newtonshealth.com
*.hostmaster.paediatricdentist.in
paediatricdentist.in
*.paediatricdentist.in
*.hostmaster.partouche.pro
partouche.pro
*.partouche.pro
*.www.partouche.pro
*.hostmaster.peoplestars.net
peoplestars.net
*.peoplestars.net
*.www.peoplestars.net
*.4czyn.stendenrangsit.com
*.ftchc.stendenrangsit.com
stendenrangsit.com
*.stendenrangsit.com
*.hostmaster.synapix.com
synapix.com
*.synapix.com
*.api.xn--almarketi-z2b.com
*.autoconfig.xn--almarketi-z2b.com
*.backend.xn--almarketi-z2b.com
*.bobiqrds.xn--almarketi-z2b.com
*.cdn.xn--almarketi-z2b.com
*.cloud.xn--almarketi-z2b.com
*.dashboard.xn--almarketi-z2b.com
*.dev.xn--almarketi-z2b.com
*.es.xn--almarketi-z2b.com
*.hostmaster.xn--almarketi-z2b.com
*.mail.xn--almarketi-z2b.com
*.postmaster.xn--almarketi-z2b.com
*.qa.xn--almarketi-z2b.com
*.qmfoxmail.xn--almarketi-z2b.com
*.remote.xn--almarketi-z2b.com
*.secure.xn--almarketi-z2b.com
*.shop.xn--almarketi-z2b.com
*.store.xn--almarketi-z2b.com
*.ups.xn--almarketi-z2b.com
*.v2.xn--almarketi-z2b.com
*.vdi.xn--almarketi-z2b.com
*.web.xn--almarketi-z2b.com
*.ww38.xn--almarketi-z2b.com
*.www.xn--almarketi-z2b.com
xn--almarketi-z2b.com
*.xn--almarketi-z2b.com
Other domains in certificate