Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=agnitum.de
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 21, 2026
Valid Until
August 19, 2026
71 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
AF:13:4F:C7:86:49:FA:B1:83:5F:10:9A:2E:05:1F:59:0C:49:9B:90:9E:0C:71:00:C4:0D:5B:E7:A8:F3:4B:2F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
myhomework.it
*.myhomework.it
*.admin.myhomework.it
*.analytics.myhomework.it
*.backend.myhomework.it
*.bi.myhomework.it
*.demo.myhomework.it
*.dev.myhomework.it
*.intelligence.myhomework.it
*.metric.myhomework.it
*.staging.myhomework.it
350oo.app
*.350oo.app
*.acqmibackup.350oo.app
*.api.350oo.app
*.app.350oo.app
*.backup.350oo.app
*.dev.350oo.app
*.mailer.350oo.app
*.marketing.350oo.app
*.new.350oo.app
*.q88d9l.350oo.app
*.qa.350oo.app
*.rustore.350oo.app
*.rzejtdashboard.350oo.app
*.secure.350oo.app
*.staging.350oo.app
*.v2.350oo.app
*.web.350oo.app
agnitum.de
*.agnitum.de
*.ww1.agnitum.de
*.ww16.agnitum.de
buyfair.us
*.buyfair.us
*.pop.buyfair.us
*.smtp.buyfair.us
*.splash.buyfair.us
*.33228822-58f0-4fda-b455-f862e894b402.dreamchildproject.com
*.94820aa0-8b94-40ac-bf74-2a9ec72516b7.dreamchildproject.com
*.admin.dreamchildproject.com
*.api.dreamchildproject.com
*.app.dreamchildproject.com
*.autodiscover.dreamchildproject.com
*.demo.dreamchildproject.com
*.dev.dreamchildproject.com
dreamchildproject.com
*.dreamchildproject.com
*.k0hqgl.dreamchildproject.com
*.mail.dreamchildproject.com
*.test.dreamchildproject.com
*.tojemrhtcwtest.dreamchildproject.com
*.0u12d.gossipauthentic.xyz
*.244a706e-3d07-459a-8df9-b3d85244625a.gossipauthentic.xyz
*.25c6b0c2-e1e2-4502-9e78-b04b312b7573.gossipauthentic.xyz
*.4yj7f.gossipauthentic.xyz
*.5jsd7.gossipauthentic.xyz
*.673e4aa2-1afe-4b35-80e0-dcda6ff4e51f.gossipauthentic.xyz
*.6cd9j.gossipauthentic.xyz
*.95vhx.gossipauthentic.xyz
*.a91b171b-ef68-43c8-9990-76cb9e86662c.gossipauthentic.xyz
*.admin.gossipauthentic.xyz
*.api.gossipauthentic.xyz
*.app.gossipauthentic.xyz
*.cxie3.gossipauthentic.xyz
*.d.gossipauthentic.xyz
*.dwij7.gossipauthentic.xyz
*.ebwif.gossipauthentic.xyz
*.ehsdkuffsjcxie3.gossipauthentic.xyz
gossipauthentic.xyz
*.gossipauthentic.xyz
*.hgsq5.gossipauthentic.xyz
*.hrka1.gossipauthentic.xyz
*.kwid9.gossipauthentic.xyz
*.l7nqb.gossipauthentic.xyz
*.lbcp6.gossipauthentic.xyz
*.qpuov.gossipauthentic.xyz
*.test.gossipauthentic.xyz
*.uugt9.gossipauthentic.xyz
*.wsct4.gossipauthentic.xyz
*.www.gossipauthentic.xyz
*.xbh6h.gossipauthentic.xyz
*.y6iui.gossipauthentic.xyz
rsautopecas.com.br
*.rsautopecas.com.br
*.ww16.rsautopecas.com.br
*.ww38.rsautopecas.com.br
*.rmbc3l.sevimliya.info
sevimliya.info
*.sevimliya.info
Other domains in certificate