Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=bluecollection.it
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 11, 2026
Valid Until
August 09, 2026
89 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E3:F3:68:95:CA:F6:67:14:FD:36:CC:87:01:DC:B6:1C:5C:67:FD:72:86:C5:F2:28:98:20:B2:9B:C8:D3:36:C5
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
columbo.it
*.columbo.it
*.bi.bluecollection.it
bluecollection.it
*.bluecollection.it
*.demo.bluecollection.it
*.hostmaster.bluecollection.it
*.superset.bluecollection.it
*.test.bluecollection.it
camcoconstructions.com
*.camcoconstructions.com
committed.it
*.committed.it
contradanyc.com
*.contradanyc.com
fashionladies.shop
*.fashionladies.shop
*.99.forceinnovatepulse.com
*.bi.forceinnovatepulse.com
*.ci-visualize.forceinnovatepulse.com
*.development.forceinnovatepulse.com
forceinnovatepulse.com
*.forceinnovatepulse.com
*.gitlab.forceinnovatepulse.com
*.mailserver.forceinnovatepulse.com
*.mta-sts.forceinnovatepulse.com
*.wp.forceinnovatepulse.com
*.ww7.forceinnovatepulse.com
foxmedia.com.au
*.foxmedia.com.au
guthubusercontent.com
*.guthubusercontent.com
heartandsoulsoulfood.com
*.heartandsoulsoulfood.com
hunan-taste.com
*.hunan-taste.com
leblancscajunkitchen.com
*.leblancscajunkitchen.com
linglongxuannj.com
*.linglongxuannj.com
lounges.com.au
*.lounges.com.au
medianow.com.au
*.medianow.com.au
phoenixbarbershopstudios.com
*.phoenixbarbershopstudios.com
*.ww25.phoenixbarbershopstudios.com
*.ww38.phoenixbarbershopstudios.com
pick-upp.sbs
*.pick-upp.sbs
poethus.com
*.poethus.com
pr-taxi-services.com
*.pr-taxi-services.com
premiummortgagebroker.com.au
*.premiummortgagebroker.com.au
prolumino.com
*.prolumino.com
*.7.promocentrallaunch.com
*.gitlab.promocentrallaunch.com
promocentrallaunch.com
*.promocentrallaunch.com
*.www.promocentrallaunch.com
restaurant-arlecchino.com
*.restaurant-arlecchino.com
restaurantesakura.com
*.restaurantesakura.com
riograndemtpleasant.com
*.riograndemtpleasant.com
rioportsmouth.com
*.rioportsmouth.com
roanokewingboss.com
*.roanokewingboss.com
seopop.net
*.seopop.net
*.server.seopop.net
streamingcimunity.eu
*.streamingcimunity.eu
sweetbasilthaialbany.com
*.sweetbasilthaialbany.com
tapa.world
*.tapa.world
viabola88.blog
*.viabola88.blog
videochow.com
*.videochow.com
videoconferencing.app
*.videoconferencing.app
vietnampho.co.uk
*.vietnampho.co.uk
Other domains in certificate