Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=materiaetherica.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 21, 2026
Valid Until
August 19, 2026
70 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5A:C4:34:65:90:E8:5B:D8:21:29:77:14:F4:CC:C1:CB:57:B7:C4:C4:D7:EC:0D:37:53:B2:30:9D:3E:96:78:0A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
87 domains
dea.com.au
*.dea.com.au
*.cojendpa.dea.com.au
*.web.dea.com.au
careerfly.in
*.careerfly.in
*.aseagtle.comcasg.net
comcasg.net
*.comcasg.net
*.home.comcasg.net
*.ww38.comcasg.net
connsumercellular.com
*.connsumercellular.com
*.ww25.connsumercellular.com
frankingmachine.com.au
*.frankingmachine.com.au
ghostinvestigationteam.uk
*.ghostinvestigationteam.uk
*.mail.materiaetherica.com
materiaetherica.com
*.materiaetherica.com
*.als.pengin-music.com
*.bao.pengin-music.com
*.basu.pengin-music.com
*.ben.pengin-music.com
*.bole.pengin-music.com
*.bomi.pengin-music.com
*.cao.pengin-music.com
*.chen.pengin-music.com
*.dehui.pengin-music.com
*.fuan.pengin-music.com
*.gaize.pengin-music.com
*.gan.pengin-music.com
*.gbd.pengin-music.com
*.golog.pengin-music.com
*.gucheng.pengin-music.com
*.hannan.pengin-music.com
*.heb.pengin-music.com
*.hinggan.pengin-music.com
*.hle.pengin-music.com
*.hongkong.pengin-music.com
*.hostmaster.pengin-music.com
*.jingtai.pengin-music.com
*.jiu.pengin-music.com
*.jurong.pengin-music.com
*.kong.pengin-music.com
*.kun.pengin-music.com
*.la.pengin-music.com
*.lanping.pengin-music.com
*.lao.pengin-music.com
*.le.pengin-music.com
*.lechang.pengin-music.com
*.liu.pengin-music.com
*.luquan.pengin-music.com
*.macau.pengin-music.com
*.macheng.pengin-music.com
*.mile.pengin-music.com
*.ming.pengin-music.com
*.ms.pengin-music.com
*.ms0.pengin-music.com
pengin-music.com
*.pengin-music.com
*.po.pengin-music.com
*.pulandian.pengin-music.com
*.san.pengin-music.com
*.shishou.pengin-music.com
*.suzhou.pengin-music.com
*.sw.pengin-music.com
*.tan.pengin-music.com
*.tu.pengin-music.com
*.wai.pengin-music.com
*.wh.pengin-music.com
*.www.pengin-music.com
*.xuan.pengin-music.com
*.yang.pengin-music.com
*.yangzhong.pengin-music.com
*.yingde.pengin-music.com
*.yongji.pengin-music.com
*.yu.pengin-music.com
*.zhao.pengin-music.com
*.zhuhai.pengin-music.com
reddy.com.au
*.reddy.com.au
*.random.ultimatecard.au
ultimatecard.au
*.ultimatecard.au
*.ww38.ultimatecard.au
Other domains in certificate