Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=alsavoir.fr
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 30, 2026
Valid Until
July 29, 2026
84 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5C:84:BD:DF:3D:EA:FD:CF:13:85:7C:A2:A1:EA:43:25:09:52:6F:37:7F:A8:EE:1C:40:3D:44:D2:AD:18:3B:9B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
67 domains
wecoo.space
*.wecoo.space
101kits.store
*.101kits.store
123moviesday.com
*.123moviesday.com
*.emails.123moviesday.com
*.www.123moviesday.com
*.www1.123moviesday.com
2441march2024.com
*.2441march2024.com
*.p242.2441march2024.com
alsavoir.fr
*.alsavoir.fr
angelshopes.store
*.angelshopes.store
astrophic.store
*.astrophic.store
bathtubs.com.au
*.bathtubs.com.au
*.ww38.bathtubs.com.au
brisbanecityhotels.au
*.brisbanecityhotels.au
cagovernorsscholars.com
*.cagovernorsscholars.com
*.email.cagovernorsscholars.com
*.links.cagovernorsscholars.com
cursor.au
*.cursor.au
*.analytics.darkcoco.com.au
darkcoco.com.au
*.darkcoco.com.au
dolcevita.com.au
*.dolcevita.com.au
*.ww25.dolcevita.com.au
duaveinsan.net
*.duaveinsan.net
ecoblog.pro
*.ecoblog.pro
*.ww38.ecoblog.pro
*.www.ecoblog.pro
fotzenfolter.de
*.fotzenfolter.de
interactivbrokers.com
*.interactivbrokers.com
*.login.interactivbrokers.com
*.ww25.interactivbrokers.com
*.ww38.interactivbrokers.com
kitchencabinetstobuy-open.space
*.kitchencabinetstobuy-open.space
lafermedusainteloi.fr
*.lafermedusainteloi.fr
*.barrow.petitions.com.au
petitions.com.au
*.petitions.com.au
royalhighlands.com
*.royalhighlands.com
terrazzo.au
*.terrazzo.au
us-shein.store
*.us-shein.store
wintrcart.uk
*.wintrcart.uk
xmp.de
*.xmp.de
xn--flgeltorantrieb-0vb.de
*.xn--flgeltorantrieb-0vb.de
Other domains in certificate