Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=johnbainedinburghltd.co.uk
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 27, 2026
Valid Until
August 25, 2026
75 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BA:AD:1E:3D:D6:A5:DC:AA:07:60:91:A7:AB:E4:6D:04:CA:18:7D:9A:8A:50:F3:52:FC:A0:C4:C3:D1:E1:B4:54
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
cgithub.com
*.cgithub.com
*.360.cgithub.com
*.ail.cgithub.com
*.baidu.cgithub.com
*.cop163.cgithub.com
*.ghproxy.cgithub.com
*.gitclone.cgithub.com
*.githubproxy.cgithub.com
*.gitmirror.cgithub.com
*.iqiyi.cgithub.com
*.jwanfs.cgithub.com
*.lavey.cgithub.com
*.netflix.cgithub.com
*.oracle.cgithub.com
*.ouedkniss.cgithub.com
*.roblox.cgithub.com
*.so.cgithub.com
*.xfyun.cgithub.com
cybermondaynews.click
*.cybermondaynews.click
*.admin.distrazione.it
*.app.distrazione.it
distrazione.it
*.distrazione.it
*.staging.distrazione.it
*.www.distrazione.it
dotvenom.me
*.dotvenom.me
*.www.dotvenom.me
erickstreeservicesct.com
*.erickstreeservicesct.com
haryana.life
*.haryana.life
johnbainedinburghltd.co.uk
*.johnbainedinburghltd.co.uk
*.ww25.johnbainedinburghltd.co.uk
lukmall.com
*.lukmall.com
*.rustore.lukmall.com
*.www3.lukmall.com
*.www5.lukmall.com
*.www6.lukmall.com
*.api.marketingplus.it
*.dash.marketingplus.it
*.dashs.marketingplus.it
*.demo.marketingplus.it
*.hostmaster.marketingplus.it
*.landed.marketingplus.it
marketingplus.it
*.marketingplus.it
*.owa.marketingplus.it
*.remote.marketingplus.it
*.reporting.marketingplus.it
*.staging.marketingplus.it
*.www.marketingplus.it
nirakivietnam.click
*.nirakivietnam.click
rishitha-talluri.me
*.rishitha-talluri.me
*.76150b57-b091-46e5-833d-fcd9c53c9622.tkbdt.net
*.8d7fafb8-e71a-452c-9633-e1356a1a4f15.tkbdt.net
*.backup.tkbdt.net
*.bbtsamarketing.tkbdt.net
*.cihafxby.tkbdt.net
*.dashboard.tkbdt.net
*.dev.tkbdt.net
*.mail.tkbdt.net
*.marketing.tkbdt.net
*.qa.tkbdt.net
*.secure.tkbdt.net
*.staging.tkbdt.net
*.stg.tkbdt.net
tkbdt.net
*.tkbdt.net
*.uat.tkbdt.net
*.v1.tkbdt.net
*.v2.tkbdt.net
*.web.tkbdt.net
*.www.tkbdt.net
*.yoaexuat.tkbdt.net
vldey.co
*.vldey.co
*.bilibili.yinyutu.com
*.ww17.yinyutu.com
*.ww25.yinyutu.com
*.ww25w.yinyutu.com
*.ww38.yinyutu.com
yinyutu.com
*.yinyutu.com
Other domains in certificate