Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=besttrading.it
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 19, 2026
Valid Until
May 20, 2026
86 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
03:80:17:46:44:1A:B7:64:30:B9:F4:16:E2:4A:E0:99:9A:A5:B5:98:B7:0C:7A:3B:9E:DF:58:07:00:EB:63:C7
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
campingtreff.de
*.campingtreff.de
*.admin.bbgstore.com
*.app.bbgstore.com
*.assets.bbgstore.com
bbgstore.com
*.bbgstore.com
*.blog.bbgstore.com
*.cloud.bbgstore.com
*.connect.bbgstore.com
*.dev.bbgstore.com
*.kztwtezbpyvpn1.bbgstore.com
*.random.bbgstore.com
*.secure.bbgstore.com
*.sslvpn.bbgstore.com
*.vdi.bbgstore.com
besttrading.it
*.besttrading.it
*.random.besttrading.it
*.rreeostaging.besttrading.it
*.admin.circuitcoin.net
*.api.circuitcoin.net
*.app.circuitcoin.net
*.assets.circuitcoin.net
*.b5d72ebc-117e-4847-b71d-88a1173ed941.circuitcoin.net
*.blog.circuitcoin.net
circuitcoin.net
*.circuitcoin.net
*.dev.circuitcoin.net
*.ebdisk.circuitcoin.net
*.ebmail.circuitcoin.net
*.f3223775-806d-4ddd-9fca-690c7e4c41ff.circuitcoin.net
*.forum.circuitcoin.net
*.hnvnqmembros.circuitcoin.net
*.hostmaster.circuitcoin.net
*.mail.circuitcoin.net
*.membros.circuitcoin.net
*.rcvmiassets.circuitcoin.net
*.remote.circuitcoin.net
*.smtp.circuitcoin.net
*.test.circuitcoin.net
*.vpn.circuitcoin.net
*.webdisk.circuitcoin.net
*.webmail.circuitcoin.net
*.www.circuitcoin.net
*.www3.circuitcoin.net
*.xiciyebmail.circuitcoin.net
*.xqpiihostmaster.circuitcoin.net
*.zofgnmail.circuitcoin.net
hg2cb4.com
*.hg2cb4.com
*.cpanel.janncuidatusalud.com.mx
janncuidatusalud.com.mx
*.janncuidatusalud.com.mx
*.demo.levie.it
levie.it
*.levie.it
*.rd.levie.it
*.webmail2013.levie.it
marketengagepro.com
*.marketengagepro.com
marketsabudhabi.com
*.marketsabudhabi.com
marktest-angola.com
*.marktest-angola.com
massage-chair-in-th3.click
*.massage-chair-in-th3.click
mastek.org
*.mastek.org
newyorkfilmfestival.com
*.newyorkfilmfestival.com
*.active.projects.co.za
*.construction.projects.co.za
*.elab.projects.co.za
*.elixir.projects.co.za
*.etf.projects.co.za
*.fire.projects.co.za
*.mci.projects.co.za
*.ongkokame.projects.co.za
projects.co.za
*.projects.co.za
*.quinlin.projects.co.za
*.rv.projects.co.za
*.zetbosaya.projects.co.za
*.brinkers.tore.fi
*.remote.tore.fi
tore.fi
*.tore.fi
tourismhotels.com
*.tourismhotels.com
Other domains in certificate