Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=apricappartamenti.info
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
May 31, 2026
Valid Until
August 29, 2026
66 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
AD:D4:A8:04:1F:5D:49:B4:F8:27:84:BB:3B:F9:12:D4:72:70:03:A3:48:85:0F:2C:29:FE:EC:2D:C2:4F:E7:BE
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
65 domains
carbontech.bio
*.carbontech.bio
*.mail.carbontech.bio
*.sitemap.carbontech.bio
apricappartamenti.info
*.apricappartamenti.info
*.random.apricappartamenti.info
*.staging.apricappartamenti.info
*.ww38.apricappartamenti.info
banbolong12.click
*.banbolong12.click
*.karriere.banbolong12.click
*.portail.banbolong12.click
beautyloves.website
*.beautyloves.website
bnbfinance.click
*.bnbfinance.click
*.random.bnbfinance.click
careerboostijk.com
*.careerboostijk.com
coolshields.store
*.coolshields.store
interelectric.com
*.interelectric.com
jowomaxwin.click
*.jowomaxwin.click
*.m.jowomaxwin.click
mitaogirl.asia
*.mitaogirl.asia
mumbaidailyluckybumper.com
*.mumbaidailyluckybumper.com
myalgo.life
*.myalgo.life
*.hostmaster.newtoybrands.co.uk
newtoybrands.co.uk
*.newtoybrands.co.uk
okvop.xyz
*.okvop.xyz
satay99.net
*.satay99.net
skyscabber.de
*.skyscabber.de
*.aviatoor.smmlow.site
*.aviator.smmlow.site
*.panel.smmlow.site
smmlow.site
*.smmlow.site
*.store.smmlow.site
trustentertainment.xyz
*.trustentertainment.xyz
twenterprise.org
*.twenterprise.org
*.m.tytporno.club
tytporno.club
*.tytporno.club
venex.site
*.venex.site
*.pay.world2008.com
*.sitemap.world2008.com
*.sitemaps.world2008.com
world2008.com
*.world2008.com
*.ww25.world2008.com
*.ww38.world2008.com
*.www.world2008.com
Other domains in certificate