Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=beverage.it.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 16, 2026
Valid Until
August 14, 2026
82 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
30:8B:03:F0:0D:8A:32:6A:FB:98:07:EC:CC:0C:00:EE:5D:A7:FE:03:45:44:A7:17:09:CF:D0:ED:32:09:24:2F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
slcbce.click
*.slcbce.click
02800.co
*.02800.co
1f8tio.vip
*.1f8tio.vip
3hs3bvr.vip
*.3hs3bvr.vip
6669997.com
*.6669997.com
7h2y12.top
*.7h2y12.top
831089.actor
*.831089.actor
8359393.cc
*.8359393.cc
891325.win
*.891325.win
985167.co
*.985167.co
beverage.it.com
*.beverage.it.com
casinoonlineslotmachine.top
*.casinoonlineslotmachine.top
command.cc
*.command.cc
danske-casinoer.org
*.danske-casinoer.org
ebuddy.io
*.ebuddy.io
elitearcade138.info
*.elitearcade138.info
jjzerscreen.com
*.jjzerscreen.com
jpts777.com
*.jpts777.com
js94ngz.pro
*.js94ngz.pro
king9bet.vip
*.king9bet.vip
ko789bet.vip
*.ko789bet.vip
kolsj.com
*.kolsj.com
ku23bet.vip
*.ku23bet.vip
laowangvwy809.vip
*.laowangvwy809.vip
lovhagen.com
*.lovhagen.com
meetsignblueinkdigital.com
*.meetsignblueinkdigital.com
mintware.lat
*.mintware.lat
mysteryadventure853.info
*.mysteryadventure853.info
notebookparrot.com
*.notebookparrot.com
novae.life
*.novae.life
np58.cc
*.np58.cc
nuhhgoudoorstlavoro.online
*.nuhhgoudoorstlavoro.online
nyppt6.cc
*.nyppt6.cc
pandaking89-th.com
*.pandaking89-th.com
qwwfrdosc.cc
*.qwwfrdosc.cc
r1rbet.live
*.r1rbet.live
sdwysk.com
*.sdwysk.com
sliding-glass-doors-3xh.click
*.sliding-glass-doors-3xh.click
slot777casinoonline.top
*.slot777casinoonline.top
th97bet.top
*.th97bet.top
theusd.top
*.theusd.top
tiktok5687.vip
*.tiktok5687.vip
togelup167.com
*.togelup167.com
typemailist.com
*.typemailist.com
vextolinar.cfd
*.vextolinar.cfd
Other domains in certificate