Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=animalreporter.it
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
May 30, 2026
Valid Until
August 28, 2026
65 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F6:8E:35:B9:E4:E8:19:92:E3:77:7C:95:52:84:92:2A:19:2B:B5:93:7A:F2:45:FB:82:B7:27:32:4C:75:BA:EF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
reach.software
*.reach.software
animalreporter.it
*.animalreporter.it
*.owa.animalreporter.it
breakthefake.com
*.breakthefake.com
*.ww12.breakthefake.com
cloudsfashions.com
*.cloudsfashions.com
*.cpanel.cloudsfashions.com
*.cpcontacts.cloudsfashions.com
*.mail.cloudsfashions.com
*.webdisk.cloudsfashions.com
*.ww1.cloudsfashions.com
corefo.net
*.corefo.net
*.ww38.corefo.net
*.cn.cu101.vip
*.cn1.cu101.vip
*.cn146.cu101.vip
*.cn191.cu101.vip
*.cn2.cu101.vip
*.cn322.cu101.vip
*.cn394.cu101.vip
*.cn423.cu101.vip
*.cn489.cu101.vip
*.cn918.cu101.vip
*.cn952.cu101.vip
cu101.vip
*.cu101.vip
hahalan.cn
*.hahalan.cn
hanilar.com
*.hanilar.com
insightbusinessconsultants.com
*.insightbusinessconsultants.com
namore.org
*.namore.org
nanoreum.com
*.nanoreum.com
naraz.loan
*.naraz.loan
nationalgoldenbee.com
*.nationalgoldenbee.com
newtorrent.top
*.newtorrent.top
nk38g.shop
*.nk38g.shop
noorflavouralliedea.com
*.noorflavouralliedea.com
oceanwaveplc.com
*.oceanwaveplc.com
optimumstandardglobal.com
*.optimumstandardglobal.com
*.afiliados.p1x.bet
p1x.bet
*.p1x.bet
pagamento-finalizado.it.com
*.pagamento-finalizado.it.com
palaxsolutions.com
*.palaxsolutions.com
pixellvortex.com
*.pixellvortex.com
pnpslammersdarkmarket.com
*.pnpslammersdarkmarket.com
pppabback.xyz
*.pppabback.xyz
practicebuddy.net
*.practicebuddy.net
praying.xyz
*.praying.xyz
pum88.mobi
*.pum88.mobi
qp33s.shop
*.qp33s.shop
rc62s.shop
*.rc62s.shop
rebuyaffiliate.com
*.rebuyaffiliate.com
redboxd.com
*.redboxd.com
repelishd.vip
*.repelishd.vip
rmrassociatesinc.com
*.rmrassociatesinc.com
*.m.xn--ee3au30a.com
*.ww1.xn--ee3au30a.com
xn--ee3au30a.com
*.xn--ee3au30a.com
Other domains in certificate