Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=insect.it
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 02, 2026
Valid Until
July 31, 2026
37 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9D:79:F6:A8:75:2A:32:AA:5F:E2:25:AB:EE:9E:2A:48:A8:AA:85:52:79:9E:23:78:18:3C:A0:C5:9F:39:E5:CA
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
brooksrunning.icu
*.brooksrunning.icu
*.admin.brooksrunning.icu
*.fallback.brooksrunning.icu
*.hostmaster.brooksrunning.icu
*.magento.brooksrunning.icu
*.mx1.brooksrunning.icu
*.random.brooksrunning.icu
*.support2.brooksrunning.icu
*.ww1.brooksrunning.icu
*.ww12.brooksrunning.icu
*.www.brooksrunning.icu
177208.com
*.177208.com
animesuge.pro
*.animesuge.pro
*.documentosprivativos0hdb.animesuge.pro
*.documentosprivativos5jcc.animesuge.pro
*.documentosprivativos805a.animesuge.pro
*.documentosprivativos9aaf.animesuge.pro
*.documentosprivativosd0k9.animesuge.pro
*.documentosprivativosdfk3.animesuge.pro
*.to.animesuge.pro
*.www.animesuge.pro
*.25.bellevuefarm.org.uk
bellevuefarm.org.uk
*.bellevuefarm.org.uk
*.mail.bellevuefarm.org.uk
*.my.bellevuefarm.org.uk
*.w.bellevuefarm.org.uk
betting24.co
*.betting24.co
*.sitemaps.betting24.co
bokeplive.fun
*.bokeplive.fun
*.m.bokeplive.fun
casagni.it
*.casagni.it
*.hostmaster.casagni.it
construccion.it
*.construccion.it
factswithjuliet.com
*.factswithjuliet.com
*.ng.factswithjuliet.com
ggr.bet
*.ggr.bet
gliaccessori.com
*.gliaccessori.com
ilsociale.it
*.ilsociale.it
insect.it
*.insect.it
*.staging.insect.it
linp.io
*.linp.io
*.m.linp.io
*.stage.linp.io
*.www.linp.io
*.doc.losthost.online
*.freevpn.losthost.online
losthost.online
*.losthost.online
mephsiwo21ki.club
*.mephsiwo21ki.club
needtosay.it
*.needtosay.it
prestamodeoliva.es
*.prestamodeoliva.es
*.m.prostenal.online
prostenal.online
*.prostenal.online
*.ww25.prostenal.online
*.com.router90e8c6.com
*.mobi.router90e8c6.com
*.net.router90e8c6.com
router90e8c6.com
*.router90e8c6.com
*.ww25.router90e8c6.com
sbnjaya88.click
*.sbnjaya88.click
securitydestruction.au
*.securitydestruction.au
thepreserveop.com
*.thepreserveop.com
*.ww25.thepreserveop.com
*.d2gj8qpvjk5s73ehlq7g.tocatchatoken.com
tocatchatoken.com
*.tocatchatoken.com
ukrainet.org
*.ukrainet.org
Other domains in certificate