Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=pendentes.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 21, 2026
Valid Until
July 20, 2026
51 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B0:54:A4:81:DE:ED:38:23:06:56:EB:51:5D:DA:F2:FF:BD:43:3C:28:34:F8:A2:AB:1B:06:BC:C1:7F:71:F2:5C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
therealreal.co
*.therealreal.co
*.crm.therealreal.co
*.e.therealreal.co
*.help.therealreal.co
*.ihwtoctzz3uqe97d.therealreal.co
*.staging.therealreal.co
*.ww25.therealreal.co
bestsolicitors.com.au
*.bestsolicitors.com.au
*.ww25.bestsolicitors.com.au
*.ww38.bestsolicitors.com.au
bolthanger.com
*.bolthanger.com
*.ww16.bolthanger.com
*.ww25.bolthanger.com
*.ww38.bolthanger.com
chicagoinsuranceco.com
*.chicagoinsuranceco.com
*.learn.chicagoinsuranceco.com
copecard.com
*.copecard.com
*.prod.copecard.com
*.random.copecard.com
*.shop.copecard.com
cougarbard.com
*.cougarbard.com
crickbets99.co
*.crickbets99.co
d00dz.pro
*.d00dz.pro
*.app.fkapay.com
*.demo.fkapay.com
fkapay.com
*.fkapay.com
*.hostmaster.fkapay.com
*.mail.fkapay.com
*.mailer.fkapay.com
*.rd.fkapay.com
*.rds.fkapay.com
*.uat.fkapay.com
*.v2.fkapay.com
getintopcc.com
*.getintopcc.com
*.ww25.getintopcc.com
hardwired.it
*.hardwired.it
hotellasperanza.it
*.hotellasperanza.it
indiaonweb.site
*.indiaonweb.site
*.site.indiaonweb.site
jzsp147.com
*.jzsp147.com
kohls2023sweeps.com
*.kohls2023sweeps.com
kramarenko.com
*.kramarenko.com
manhua55.xyz
*.manhua55.xyz
*.ww17.manhua55.xyz
*.wwe.manhua55.xyz
*.hostmaster.onlinebackup.tools
onlinebackup.tools
*.onlinebackup.tools
*.ww25.onlinebackup.tools
*.ww38.onlinebackup.tools
ouishareradio.com
*.ouishareradio.com
*.ww16.ouishareradio.com
pendentes.com
*.pendentes.com
pureepoxy.com
*.pureepoxy.com
*.ww38.pureepoxy.com
repuestosweb.com
*.repuestosweb.com
*.fb.scubadivingwithdolphins.com
*.lab.scubadivingwithdolphins.com
scubadivingwithdolphins.com
*.scubadivingwithdolphins.com
*.ww25.scubadivingwithdolphins.com
spherics.com
*.spherics.com
*.ww38.spherics.com
*.ww25.wwwgrammarly.com
*.ww38.wwwgrammarly.com
wwwgrammarly.com
*.wwwgrammarly.com
Other domains in certificate