Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=soukromaklinika.cz
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
June 02, 2026
Valid Until
August 31, 2026
69 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
02:96:B7:E2:36:BF:33:57:2A:9A:0E:8B:EA:1A:24:93:36:34:EA:62:BF:FD:F0:F9:32:E2:D7:9C:C4:C4:15:B9
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
verdoxa.com
*.verdoxa.com
*.74d6d583-3de9-4206-8cd8-de13b14024df.verdoxa.com
*.mail.verdoxa.com
*.vpn.verdoxa.com
*.zevj9y.verdoxa.com
disnetland.com
*.disnetland.com
funnythings.com.au
*.funnythings.com.au
grilfriend.com
*.grilfriend.com
*.tonights.grilfriend.com
*.wildcard.grilfriend.com
*.ww38.grilfriend.com
helixsolutions.biz
*.helixsolutions.biz
*.ww25.helixsolutions.biz
informedoulas.com
*.informedoulas.com
irtanin.com
*.irtanin.com
*.wildcard.irtanin.com
*.www.irtanin.com
journeyanatolia.com
*.journeyanatolia.com
*.diario.laeconomia.com
*.farmatizate.laeconomia.com
laeconomia.com
*.laeconomia.com
*.pop.laeconomia.com
*.wildcard.laeconomia.com
michaelgordon.co
*.michaelgordon.co
*.ww1.michaelgordon.co
*.7j.roofingsalesco.com
*.ask.roofingsalesco.com
*.cit.roofingsalesco.com
*.dbis.roofingsalesco.com
*.gtzy.roofingsalesco.com
*.jenkins.roofingsalesco.com
*.lolriotmall.roofingsalesco.com
*.mail.roofingsalesco.com
*.newstudent.roofingsalesco.com
*.rlsbj.roofingsalesco.com
roofingsalesco.com
*.roofingsalesco.com
*.shop.roofingsalesco.com
*.show.roofingsalesco.com
*.store.roofingsalesco.com
*.work.roofingsalesco.com
*.ww17.roofingsalesco.com
*.xyzh.roofingsalesco.com
shabneshin-esfahan.com
*.shabneshin-esfahan.com
similarweb.au
*.similarweb.au
*.wildcard.similarweb.au
*.genesys.sistas.org
*.neaecec.sistas.org
sistas.org
*.sistas.org
*.wildcard.sistas.org
*.ww25.sistas.org
socbd.top
*.socbd.top
soukromaklinika.cz
*.soukromaklinika.cz
sportmediaconcept.com
*.sportmediaconcept.com
*.t.un1.site
un1.site
*.un1.site
*.vula.un1.site
*.ww25.un1.site
*.zu1h.un1.site
vulkan-original.sbs
*.vulkan-original.sbs
*.demo.wervid.online
*.ecole.wervid.online
*.film.wervid.online
*.go.wervid.online
*.news.wervid.online
*.pos.wervid.online
*.resto.wervid.online
*.social.wervid.online
wervid.online
*.wervid.online
*.whatsapp.wervid.online
Other domains in certificate