Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=darkmoto.it
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
March 30, 2026
Valid Until
June 28, 2026
51 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
33:E6:F9:55:8B:60:11:06:C8:9F:FA:3F:D8:E2:75:0D:2A:3B:9D:26:E1:B9:DB:06:A6:6E:A2:E6:65:19:53:72
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
87 domains
statemn.us
*.statemn.us
*.ag.statemn.us
*.appshealth.statemn.us
*.bps.statemn.us
*.c0urts.statemn.us
*.childcaredhs.statemn.us
*.commerce.statemn.us
*.court.statemn.us
*.courts.statemn.us
*.des.statemn.us
*.dhs.statemn.us
*.dnr.statemn.us
*.doc.statemn.us
*.doer.statemn.us
*.dot.statemn.us
*.dps.statemn.us
*.edockets.statemn.us
*.education.statemn.us
*.electriciry.statemn.us
*.elig.statemn.us
*.eourts.statemn.us
*.etaxes.statemn.us
*.health.statemn.us
*.housejeq.statemn.us
*.mda.statemn.us
*.mdva.statemn.us
*.metc.statemn.us
*.mnplan.statemn.us
*.msl.statemn.us
*.msrs.statemn.us
*.nsab.statemn.us
*.ohe.statemn.us
*.pa.statemn.us
*.pca.statemn.us
*.pubdef.statemn.us
*.revenue.statemn.us
*.reveune.statemn.us
*.revnu.statemn.us
*.sos.statemn.us
*.systems.statemn.us
*.taxes.statemn.us
*.taxwes.statemn.us
*.tr.statemn.us
*.venue.statemn.us
*.x.statemn.us
*.zx.statemn.us
appgeniuse.store
*.appgeniuse.store
asystentowy.pl
*.asystentowy.pl
automationemire.store
*.automationemire.store
darkmoto.it
*.darkmoto.it
*.random.darkmoto.it
feelkart.live
*.feelkart.live
grrenwin.tech
*.grrenwin.tech
grssuplements10.store
*.grssuplements10.store
gym-fit.pl
*.gym-fit.pl
harchizi.site
*.harchizi.site
harpagonseep.world
*.harpagonseep.world
hogariral.store
*.hogariral.store
i11fin.tech
*.i11fin.tech
kancelaria-tatarczak.pl
*.kancelaria-tatarczak.pl
kanguexpress.store
*.kanguexpress.store
lofygang.info
*.lofygang.info
majormedia.io
*.majormedia.io
vip-dotaslot1.xyz
*.vip-dotaslot1.xyz
*.www.vip-dotaslot1.xyz
*.raghu.webdunia.tech
*.sarv.webdunia.tech
webdunia.tech
*.webdunia.tech
Other domains in certificate