SSL Certificate Analysis for alibey.it - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=welcome2dublin.com

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

May 23, 2026

Valid Until

August 21, 2026 68 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

07:0B:63:18:F4:3A:7F:CB:24:A7:4D:42:36:0B:29:B7:43:FA:1E:95:27:C1:B7:58:52:94:A3:56:F8:F0:4A:72

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

alibey.it *.alibey.it *.app.alibey.it *.demo.alibey.it *.hala.alibey.it *.notexistsapi.alibey.it *.notexistsapp.alibey.it *.notexistsdemo.alibey.it *.notexistsstaging.alibey.it

Other domains in certificate

kycera.biz *.kycera.biz *.ww25.kycera.biz

*.beta.myflixzer.com *.chem.myflixzer.com *.d.myflixzer.com *.dev.myflixzer.com *.dom.myflixzer.com *.es.myflixzer.com *.events.myflixzer.com *.labs.myflixzer.com *.monitor.myflixzer.com myflixzer.com *.myflixzer.com *.net.myflixzer.com *.pay.myflixzer.com *.sip.myflixzer.com *.update.myflixzer.com *.users.myflixzer.com *.v3.myflixzer.com *.video.myflixzer.com *.webmail.myflixzer.com *.wordpress.myflixzer.com *.ww25.myflixzer.com

mytreat.it *.mytreat.it

n88.it *.n88.it

node.page *.node.page *.stephanemphande-co-zm.node.page *.web.node.page

ristorante-da-aldo.de *.ristorante-da-aldo.de

*.hostmaster.sb-holding.com *.m.sb-holding.com sb-holding.com *.sb-holding.com *.www.sb-holding.com

souvenirshops.it *.souvenirshops.it

*.api.steuerfrei.llc *.app.steuerfrei.llc *.backup.steuerfrei.llc *.dashboard.steuerfrei.llc *.dev.steuerfrei.llc *.mail.steuerfrei.llc *.mailer.steuerfrei.llc *.marketing.steuerfrei.llc *.p3urwr.steuerfrei.llc *.qa.steuerfrei.llc *.shop.steuerfrei.llc *.staging.steuerfrei.llc steuerfrei.llc *.steuerfrei.llc *.stg.steuerfrei.llc *.uat.steuerfrei.llc *.v1.steuerfrei.llc *.v2.steuerfrei.llc *.web.steuerfrei.llc *.xwnbjivc.steuerfrei.llc

villaescondida.com *.villaescondida.com *.www.villaescondida.com

*.kld.welcome2dublin.com *.seu.welcome2dublin.com welcome2dublin.com *.welcome2dublin.com *.work.welcome2dublin.com *.wujiaqu.welcome2dublin.com

*.m.xn--9kqu32p.com *.www.xn--9kqu32p.com xn--9kqu32p.com *.xn--9kqu32p.com

*.gitlab.zenders.com *.wakyma.zenders.com zenders.com *.zenders.com

*.www.zsgkyy.cn zsgkyy.cn *.zsgkyy.cn