Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=dessin.io
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 18, 2026
Valid Until
July 17, 2026
87 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C4:9A:E2:B6:F0:F3:56:83:7C:94:6F:69:D2:1C:63:10:62:B6:8F:6E:4F:ED:43:D0:94:82:84:6E:38:F9:6D:B0
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
brianna.it
*.brianna.it
22eeecom.cn
*.22eeecom.cn
*.co.22eeecom.cn
*.com.22eeecom.cn
*.tv.22eeecom.cn
*.app.bavette.it
bavette.it
*.bavette.it
*.bi.bavette.it
*.demo.bavette.it
*.metrics.bavette.it
*.remote.bavette.it
*.staging.bavette.it
*.superset.bavette.it
*.supersets.bavette.it
*.www.bavette.it
bluegrasscommunityclub.com
*.bluegrasscommunityclub.com
*.coml.bluegrasscommunityclub.com
*.comms.bluegrasscommunityclub.com
*.frboymx.bluegrasscommunityclub.com
*.owa.bluegrasscommunityclub.com
*.rd.bluegrasscommunityclub.com
*.wrdokvdi.bluegrasscommunityclub.com
*.admin.dessin.io
*.app.dessin.io
*.butants.dessin.io
dessin.io
*.dessin.io
*.ico.dessin.io
*.presale.dessin.io
*.sheets.dessin.io
*.sitemap.dessin.io
*.sitemaps.dessin.io
*.ww1.dessin.io
*.ww2.dessin.io
*.ww25.dessin.io
*.ww38.dessin.io
*.www.dessin.io
*.xn--dbutants-b1a.dessin.io
*.completeautomotive.email.net.au
*.cqbdri.email.net.au
*.email.email.net.au
email.net.au
*.email.net.au
*.gansu.email.net.au
*.inmail6.email.net.au
*.k.email.net.au
*.oz.email.net.au
*.syd1.email.net.au
fugundam.com
*.fugundam.com
*.wildcard.fugundam.com
*.ww25.fugundam.com
*.cl.hellopg.bet
hellopg.bet
*.hellopg.bet
*.a6cacb50-cb25-405a-89ee-6ef1432080b4.i420sandiego.com
*.api.i420sandiego.com
*.assets.i420sandiego.com
*.blog.i420sandiego.com
*.demo.i420sandiego.com
i420sandiego.com
*.i420sandiego.com
*.rds.i420sandiego.com
*.rdweb.i420sandiego.com
*.vpn.i420sandiego.com
*.go.kora.life
*.gov.kora.life
kora.life
*.kora.life
*.m.kora.life
*.random.kora.life
*.v.kora.life
*.ww25.kora.life
*.cpcontacts.magic777.bet
magic777.bet
*.magic777.bet
*.ww38.magic777.bet
restaurantecasaportela.com
*.restaurantecasaportela.com
*.ww38.restaurantecasaportela.com
shoplifestyle.online
*.shoplifestyle.online
*.ww25.xigduosaving.com
xigduosaving.com
*.xigduosaving.com
Other domains in certificate