Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=epiplostyle.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 28, 2026
Valid Until
July 27, 2026
36 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5C:49:D8:B5:4F:52:3E:39:D4:28:A4:43:64:44:57:21:03:F9:F5:FA:AD:E3:47:E2:F7:63:02:91:CD:86:F9:37
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
87 domains
pacchettini.com
*.pacchettini.com
*.api.pacchettini.com
*.app.pacchettini.com
*.backend.pacchettini.com
*.bi.pacchettini.com
*.reports.pacchettini.com
*.staging.pacchettini.com
*.stats.pacchettini.com
*.superset.pacchettini.com
*.workflow.pacchettini.com
americtraderblogiumltdx2020.xyz
*.americtraderblogiumltdx2020.xyz
*.random.americtraderblogiumltdx2020.xyz
*.ww25.americtraderblogiumltdx2020.xyz
biolio.com
*.biolio.com
*.sitemaps.biolio.com
con-constructionwork-construction548.sbs
*.con-constructionwork-construction548.sbs
cwao.org
*.cwao.org
*.hostmaster.cwao.org
*.alpha.denniscycleandauto.com
denniscycleandauto.com
*.denniscycleandauto.com
*.flowiseai.denniscycleandauto.com
*.ai.digtrack.com
*.atlantic.digtrack.com
digtrack.com
*.digtrack.com
*.heath.digtrack.com
*.ngrid.digtrack.com
*.oru.digtrack.com
*.peoples.digtrack.com
*.possynergyone.digtrack.com
*.sands.digtrack.com
*.synergyone.digtrack.com
*.ww25.digtrack.com
*.zone1.digtrack.com
*.zone2.digtrack.com
epiplostyle.com
*.epiplostyle.com
folkins.com
*.folkins.com
*.autodiscover.kenyabasketballfederation.org
*.cpcalendars.kenyabasketballfederation.org
kenyabasketballfederation.org
*.kenyabasketballfederation.org
*.webdisk.kenyabasketballfederation.org
*.webmail.kenyabasketballfederation.org
*.in.mehost.xyz
mehost.xyz
*.mehost.xyz
*.offer.mehost.xyz
nikki.life
*.nikki.life
*.random.nikki.life
*.analyze.prodottisportivi.it
*.demo.prodottisportivi.it
*.hotfix.prodottisportivi.it
*.mail.prodottisportivi.it
prodottisportivi.it
*.prodottisportivi.it
*.staging.prodottisportivi.it
*.superset.prodottisportivi.it
*.cicd.sex48.com
*.mx5.sex48.com
*.random.sex48.com
sex48.com
*.sex48.com
*.ww25.sex48.com
*.ww42.sex48.com
*.ww5.sex48.com
*.www-1.sex48.com
*.backend.xn--bebekyata-ykb2r.com
*.test.xn--bebekyata-ykb2r.com
xn--bebekyata-ykb2r.com
*.xn--bebekyata-ykb2r.com
*.admin.xn--ilingirler-n6a.com
*.email.xn--ilingirler-n6a.com
*.sitemaps.xn--ilingirler-n6a.com
xn--ilingirler-n6a.com
*.xn--ilingirler-n6a.com
*.bbs.zhiwang.cf
zhiwang.cf
*.zhiwang.cf
Other domains in certificate