Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=grams.it
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 18, 2026
Valid Until
August 16, 2026
76 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D7:A5:E8:FB:7A:41:2B:66:44:BB:18:C5:F1:61:CB:43:EE:FF:A3:05:7D:79:74:22:6E:7E:98:C6:3A:45:BC:74
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
bowz.info
*.bowz.info
*.cpanel.bowz.info
*.dev.bowz.info
*.kok.bowz.info
*.ms.bowz.info
bethesdamercymemorial.com
*.bethesdamercymemorial.com
*.ng.bethesdamercymemorial.com
donotpay.co
*.donotpay.co
*.privacy.donotpay.co
*.crm.flightdelayupcom.com
*.development.flightdelayupcom.com
*.es.flightdelayupcom.com
flightdelayupcom.com
*.flightdelayupcom.com
*.gate.flightdelayupcom.com
*.new.flightdelayupcom.com
*.store.flightdelayupcom.com
*.www.flightdelayupcom.com
*.abc.fscjrefundcard.com
*.api.fscjrefundcard.com
*.backend.fscjrefundcard.com
*.blog.fscjrefundcard.com
*.eureka.fscjrefundcard.com
*.foros.fscjrefundcard.com
fscjrefundcard.com
*.fscjrefundcard.com
*.hotels.fscjrefundcard.com
*.kazan.fscjrefundcard.com
*.lyncdiscoverinternal.fscjrefundcard.com
*.media.fscjrefundcard.com
*.mx.fscjrefundcard.com
*.newton.fscjrefundcard.com
*.random.fscjrefundcard.com
*.sms.fscjrefundcard.com
*.stage.fscjrefundcard.com
*.staging.fscjrefundcard.com
*.student.fscjrefundcard.com
*.t.fscjrefundcard.com
*.users.fscjrefundcard.com
*.ut.fscjrefundcard.com
*.webtrends.fscjrefundcard.com
*.www.fscjrefundcard.com
globaltrustflow.com
*.globaltrustflow.com
*.matworks-engineering.globaltrustflow.com
*.bounces.gooie.com
gooie.com
*.gooie.com
*.www.gooie.com
*.16.grams.it
grams.it
*.grams.it
*.imap4.grams.it
*.2011.h98.co
h98.co
*.h98.co
*.netdb-ng-01.h98.co
*.remote.h98.co
healthsexual.de
*.healthsexual.de
*.access.hnz.in
hnz.in
*.hnz.in
*.f.onzwqy.com
onzwqy.com
*.onzwqy.com
*.msitemap.slotkoin138.org
slotkoin138.org
*.slotkoin138.org
tow534a.cc
*.tow534a.cc
travelfocusgroup.xyz
*.travelfocusgroup.xyz
tullowoil-uk.com
*.tullowoil-uk.com
vigor.mobi
*.vigor.mobi
vijjqxc.top
*.vijjqxc.top
vikodu.pro
*.vikodu.pro
*.be.xs908.com
*.dev.xs908.com
*.www-dev.xs908.com
*.www.xs908.com
xs908.com
*.xs908.com
Other domains in certificate