Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=nuoviorizzonti.pl
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 24, 2026
Valid Until
July 23, 2026
64 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
49:98:74:5E:80:4E:3A:41:36:84:8F:4A:3F:87:8B:E5:3F:44:F7:4E:DA:DB:DD:C6:98:CF:04:94:9F:87:5C:21
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
easy-task.ai
*.easy-task.ai
*.api.easy-task.ai
*.app.easy-task.ai
a1detailingsolutions.com
*.a1detailingsolutions.com
*.admin.a1detailingsolutions.com
*.mail.a1detailingsolutions.com
*.snomenholdings.a1detailingsolutions.com
*.wildcard.a1detailingsolutions.com
ammjiztkeh.com
*.ammjiztkeh.com
*.ww38.ammjiztkeh.com
cheapestcarinsurance.icu
*.cheapestcarinsurance.icu
*.postmaster.cheapestcarinsurance.icu
coastridersblackpool.co.uk
*.coastridersblackpool.co.uk
*.customerdb.coastridersblackpool.co.uk
*.mail.coastridersblackpool.co.uk
*.ww25.coastridersblackpool.co.uk
doloreslopez.com
*.doloreslopez.com
*.remote.doloreslopez.com
*.wwww.doloreslopez.com
dosentoto2.xyz
*.dosentoto2.xyz
*.imap.dosentoto2.xyz
*.random.dosentoto2.xyz
*.ww25.dosentoto2.xyz
dreamydating.life
*.dreamydating.life
*.ww38.dreamydating.life
e3315.xyz
*.e3315.xyz
*.ww25.e3315.xyz
*.ww38.e3315.xyz
empowers.info
*.empowers.info
*.mail.empowers.info
*.project.empowers.info
fapbest.com
*.fapbest.com
*.mwww.fapbest.com
*.users.fapbest.com
*.ww99.fapbest.com
*.www.fapbest.com
*.165aa9a6-d411-4d28-b380-177c794f7660.gg-vegas.one
*.98397842-654e-4b0e-bf29-c7c7aedeeb79.gg-vegas.one
*.api.gg-vegas.one
*.app.gg-vegas.one
*.comune.gg-vegas.one
*.cuqoaxtm.gg-vegas.one
*.dev.gg-vegas.one
gg-vegas.one
*.gg-vegas.one
healthy-market.store
*.healthy-market.store
*.ww25.healthy-market.store
*.17.hj647f3e.top
*.25.hj647f3e.top
hj647f3e.top
*.hj647f3e.top
*.topww.hj647f3e.top
*.ww17.hj647f3e.top
*.ww25.hj647f3e.top
*.www17.hj647f3e.top
*.32.iphbs.xyz
iphbs.xyz
*.iphbs.xyz
*.m92tjnrg7.nuoviorizzonti.pl
nuoviorizzonti.pl
*.nuoviorizzonti.pl
sb1230.com
*.sb1230.com
stutsman.com
*.stutsman.com
*.ww25.stutsman.com
*.hostmaster.trendshirt.it
*.mx.trendshirt.it
trendshirt.it
*.trendshirt.it
*.www.trendshirt.it
*.ci.visionquest.live
*.gatewayrdweb.visionquest.live
*.portalvpn.visionquest.live
*.prod.visionquest.live
visionquest.live
*.visionquest.live
*.www.visionquest.live
Other domains in certificate