Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=tabetdairies.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 21, 2026
Valid Until
August 19, 2026
89 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
42:1C:45:F1:CD:BD:AB:44:42:EE:75:C0:B7:A0:A1:C6:D5:D8:6D:02:F2:2B:7B:EF:D9:A9:71:0B:E5:A1:70:FD
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
triggerdash.com
*.triggerdash.com
biomeafusioninc.co
*.biomeafusioninc.co
*.ww38.biomeafusioninc.co
*.3c6c4f57-d6b4-4d94-8de2-0fb5a6db12ce.budgettravelai.com
*.api.budgettravelai.com
*.app.budgettravelai.com
*.backup.budgettravelai.com
budgettravelai.com
*.budgettravelai.com
*.dashboard.budgettravelai.com
*.dd0a927e-63ea-41c7-8afd-fd9d0e6b5e68.budgettravelai.com
*.dev.budgettravelai.com
*.mail.budgettravelai.com
*.mailer.budgettravelai.com
*.marketing.budgettravelai.com
*.mxpdd1.budgettravelai.com
*.puovmsfq.budgettravelai.com
*.qa.budgettravelai.com
*.secure.budgettravelai.com
*.stg.budgettravelai.com
*.uat.budgettravelai.com
*.v1.budgettravelai.com
*.v2.budgettravelai.com
*.vpn.budgettravelai.com
*.web.budgettravelai.com
*.www.budgettravelai.com
*.ybtblstg.budgettravelai.com
chshonor.org
*.chshonor.org
f64238705.com
*.f64238705.com
glowneste.shop
*.glowneste.shop
laruart.com
*.laruart.com
*.mail.laruart.com
*.www.laruart.com
*.comune.lobbyperlaindependencia.org
lobbyperlaindependencia.org
*.lobbyperlaindependencia.org
*.mx.lobbyperlaindependencia.org
*.bot.perspicacious.net
perspicacious.net
*.perspicacious.net
*.123.potermore.com
potermore.com
*.potermore.com
*.ww01.potermore.com
*.www.potermore.com
*.admin.sherpaflowfunds.biz
*.assets.sherpaflowfunds.biz
*.dev.sherpaflowfunds.biz
*.e87ede64-0552-43ff-9e7a-35db9cadb5b8.sherpaflowfunds.biz
*.gpvgak.sherpaflowfunds.biz
*.mail.sherpaflowfunds.biz
*.n61zz9.sherpaflowfunds.biz
*.pouvhkx2cxr.sherpaflowfunds.biz
sherpaflowfunds.biz
*.sherpaflowfunds.biz
*.staging.sherpaflowfunds.biz
slcdunk.co
*.slcdunk.co
softoboros.co
*.softoboros.co
struczen.com
*.struczen.com
svgcode.co
*.svgcode.co
sweetspotfarms.co
*.sweetspotfarms.co
tabetdairies.com
*.tabetdairies.com
trumpaggedon.com
*.trumpaggedon.com
*.ww25.trumpaggedon.com
vixenstreet.com
*.vixenstreet.com
wigce1.cyou
*.wigce1.cyou
www978229.cc
*.www978229.cc
xx7133.cc
*.xx7133.cc
xx9939.cc
*.xx9939.cc
y81m.cyou
*.y81m.cyou
Other domains in certificate