Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=pizzaoven.it
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
March 07, 2026
Valid Until
June 05, 2026
37 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F8:CC:DE:5C:BA:68:1B:D7:3D:36:67:23:33:09:E5:D5:9B:43:C6:FD:30:F3:CA:8F:14:B5:A5:86:59:52:CB:67
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
tiago.it
*.tiago.it
*.api.tiago.it
*.app.tiago.it
*.bi.tiago.it
*.data.tiago.it
*.dev.tiago.it
*.eww.tiago.it
*.metrics.tiago.it
*.reports.tiago.it
6ix9ine.life
*.6ix9ine.life
*.hostmaster.6ix9ine.life
*.analytic.beself.it
*.analyze.beself.it
beself.it
*.beself.it
*.com.beself.it
*.dashboards.beself.it
*.dev.beself.it
*.flowiseai.beself.it
*.redash.beself.it
*.superset.beself.it
*.visual.beself.it
*.2016-single-infantadapter.carseat.online
carseat.online
*.carseat.online
*.juvenile-top-side-booster.carseat.online
*.performance-sport.carseat.online
*.roller.carseat.online
*.rx.carseat.online
*.toddler.carseat.online
*.ww25.carseat.online
devc.ws
*.devc.ws
*.zenith.devc.ws
*.app.domain364.com
*.blog.domain364.com
*.cc.domain364.com
*.com.domain364.com
domain364.com
*.domain364.com
*.expert.domain364.com
*.news.domain364.com
*.online.domain364.com
*.page.domain364.com
*.pics.domain364.com
*.tech.domain364.com
*.world.domain364.com
elektrolifter.de
*.elektrolifter.de
*.autoconfig.hindisign.com
*.cpanel.hindisign.com
*.cpcontacts.hindisign.com
hindisign.com
*.hindisign.com
*.mail.hindisign.com
*.webmail.hindisign.com
iamsydney.com
*.iamsydney.com
*.random.iamsydney.com
islandparkpropaneinc.com
*.islandparkpropaneinc.com
nudefootage.com
*.nudefootage.com
*.admin.pizzaoven.it
*.bi.pizzaoven.it
pizzaoven.it
*.pizzaoven.it
privatamateurvideo.de
*.privatamateurvideo.de
*.ns.smartleadwv.com
smartleadwv.com
*.smartleadwv.com
*.old.thehelmetwarehouse.com.au
thehelmetwarehouse.com.au
*.thehelmetwarehouse.com.au
*.ebsgoldenharvest.windridgebooksofvt.com
*.hostmaster.windridgebooksofvt.com
windridgebooksofvt.com
*.windridgebooksofvt.com
*.ww38.windridgebooksofvt.com
*.www.windridgebooksofvt.com
xn--gebrauchte-gartenmbel-yec.de
*.xn--gebrauchte-gartenmbel-yec.de
xn--goog-8qa.de
*.xn--goog-8qa.de
xn--hotmail-f1a.de
*.xn--hotmail-f1a.de
Other domains in certificate