Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=actionproject.it
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 24, 2026
Valid Until
July 23, 2026
76 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
6D:B0:C2:12:3F:B2:50:13:0C:CA:B8:EE:88:C2:C0:DA:5C:27:C4:BD:B7:89:B4:9D:9E:99:D1:91:C1:06:60:34
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
nelem360.com
*.nelem360.com
*.6af84c78-2c7d-435f-b690-33e37bcf10f7.nelem360.com
*.admin.nelem360.com
*.api.nelem360.com
*.cloud.nelem360.com
*.development.nelem360.com
*.hdivkgyajpmx0.nelem360.com
*.mail.nelem360.com
*.mx0.nelem360.com
*.rd.nelem360.com
*.rdweb.nelem360.com
actionproject.it
*.actionproject.it
*.admin.actionproject.it
*.api.actionproject.it
*.app.actionproject.it
*.dev.actionproject.it
*.email.actionproject.it
*.hostmaster.actionproject.it
*.mail.actionproject.it
*.bosxi.byai.in
byai.in
*.byai.in
*.growth.byai.in
*.surl.byai.in
*.demo.flashover.it
flashover.it
*.flashover.it
*.hostmaster.flashover.it
*.owa.flashover.it
*.report.flashover.it
*.superset.flashover.it
*.www.flashover.it
*.api.gpt-7gfintoria.com
*.dev.gpt-7gfintoria.com
gpt-7gfintoria.com
*.gpt-7gfintoria.com
*.mail.gpt-7gfintoria.com
*.sitemaps.gpt-7gfintoria.com
*.uat.gpt-7gfintoria.com
*.web.gpt-7gfintoria.com
*.cc7ea833-14bc-4826-bf81-3173eb181b80.grammarzonex.com
*.cloud.grammarzonex.com
*.data.grammarzonex.com
grammarzonex.com
*.grammarzonex.com
*.rd.grammarzonex.com
*.rds.grammarzonex.com
*.remote.grammarzonex.com
*.10e10889-83ad-44eb-bc15-abe67a7240f1.itbagospice.com
*.5e2611a1-9d6b-4987-a02b-8ea459061bb5.itbagospice.com
*.a.itbagospice.com
*.admin.itbagospice.com
*.api.itbagospice.com
*.app.itbagospice.com
*.assets.itbagospice.com
*.b1cc2783-ad92-49fb-b62b-d8a865b13e3f.itbagospice.com
*.bc3377d5-80f8-49d3-bcc6-1c3afc924e18.itbagospice.com
*.blog.itbagospice.com
*.cloud.itbagospice.com
*.demo.itbagospice.com
*.dev.itbagospice.com
*.files.itbagospice.com
itbagospice.com
*.itbagospice.com
*.m.itbagospice.com
*.postgresql.itbagospice.com
*.rd.itbagospice.com
*.rds.itbagospice.com
*.rdweb.itbagospice.com
*.remote.itbagospice.com
*.test.itbagospice.com
*.testing.itbagospice.com
*.web.itbagospice.com
*.wp.itbagospice.com
*.yedporestricted.itbagospice.com
kaffmens.com
*.kaffmens.com
naturalnails.com.au
*.naturalnails.com.au
*.ww25.naturalnails.com.au
nicg.org
*.nicg.org
*.office.nicg.org
*.sslvpn.nicg.org
*.vpn2.nicg.org
*.41558fd2-b837-4dcb-8885-55ae7dc710ee.reedpope.co
reedpope.co
*.reedpope.co
Other domains in certificate