SSL Certificate Analysis for cpanel.escursionecavallo.it - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=assgifs.com

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

April 27, 2026

Valid Until

July 26, 2026 49 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

D2:BD:19:95:5C:A4:F6:4C:5C:F1:7F:2D:B7:4F:93:1F:43:6E:94:A5:82:99:AE:B7:6A:27:12:D2:79:60:C8:01

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

escursionecavallo.it *.escursionecavallo.it *.cpanel.escursionecavallo.it *.mail.escursionecavallo.it *.webdisk.escursionecavallo.it *.www.escursionecavallo.it

Other domains in certificate

033228.top *.033228.top *.top.033228.top

assgifs.com *.assgifs.com *.ratemyselfie.assgifs.com

betbigo696.com *.betbigo696.com

book.buzz *.book.buzz

cermar.com *.cermar.com

*.ali.cine10tv.xyz cine10tv.xyz *.cine10tv.xyz *.com.cine10tv.xyz *.ww12.cine10tv.xyz *.ww38.cine10tv.xyz *.xyz.cine10tv.xyz

gogglesearch.com *.gogglesearch.com *.operamini.gogglesearch.com *.ww38.gogglesearch.com

*.app.hotellagocomo.com *.blog.hotellagocomo.com hotellagocomo.com *.hotellagocomo.com

nfkb0.com *.nfkb0.com

*.639259b3-fdec-4466-be41-3ab3aa06cd84.one-offers.top *.api.one-offers.top *.app.one-offers.top one-offers.top *.one-offers.top *.payments.one-offers.top

richtry.com *.richtry.com *.www.richtry.com

*.hostmaster.sellectquote.com sellectquote.com *.sellectquote.com *.ww12.sellectquote.com *.ww25.sellectquote.com *.www.sellectquote.com

*.bh.tep.it *.cl.tep.it *.euro.tep.it *.euros.tep.it *.file-maps.tep.it *.hostmaster.tep.it *.info.tep.it *.owa.tep.it *.portal.tep.it *.pr.tep.it *.rds.tep.it *.reporting.tep.it *.reports.tep.it *.rigv.tep.it *.srigv.tep.it tep.it *.tep.it *.test.tep.it *.visual.tep.it *.wwe.tep.it *.www.tep.it

*.30cd6642-8e4f-41d9-9867-60289c533e18.thermoflowexperts.com *.admin.thermoflowexperts.com *.api.thermoflowexperts.com *.app.thermoflowexperts.com *.assets.thermoflowexperts.com *.demo.thermoflowexperts.com *.dev.thermoflowexperts.com *.test.thermoflowexperts.com thermoflowexperts.com *.thermoflowexperts.com *.vpn.thermoflowexperts.com *.www.thermoflowexperts.com

*.71d7a858-b957-4764-93a1-c1208d3d78ea.uaenoc.net *.cpanel.uaenoc.net *.crm.uaenoc.net uaenoc.net *.uaenoc.net

veryusefultools.com *.veryusefultools.com