Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=highquality.it
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 03, 2026
Valid Until
August 01, 2026
51 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
30:20:35:37:FE:0B:AC:66:7A:3D:DC:02:55:31:1A:E7:9D:BA:C3:3F:9D:61:DB:DB:E1:7A:E5:2D:B4:EF:6B:43
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
68 domains
ctc2.space
*.ctc2.space
*.25.ctc2.space
*.hostmaster.ctc2.space
*.mail.ctc2.space
9tw.cc
*.9tw.cc
businesshydro2024.fr
*.businesshydro2024.fr
demokkk.website
*.demokkk.website
europecruise.com.au
*.europecruise.com.au
fantous.com
*.fantous.com
gemstock.xyz
*.gemstock.xyz
*.mail.gemstock.xyz
*.webdisk.gemstock.xyz
*.webmail.gemstock.xyz
*.dev.harta88ofc.com
harta88ofc.com
*.harta88ofc.com
*.www.harta88ofc.com
*.admin.highquality.it
*.app.highquality.it
*.backend.highquality.it
highquality.it
*.highquality.it
*.hostmaster.highquality.it
*.random.highquality.it
*.admin.humiliated.it
*.analytic.humiliated.it
*.api.humiliated.it
*.backend.humiliated.it
humiliated.it
*.humiliated.it
*.mta.humiliated.it
*.webmail.humiliated.it
lasvegasparty.it
*.lasvegasparty.it
*.metric.lasvegasparty.it
maryjanesworldtour.com
*.maryjanesworldtour.com
mella.website
*.mella.website
meta2080.com
*.meta2080.com
newx13.store
*.newx13.store
orlovskyi-liakh.site
*.orlovskyi-liakh.site
ovo99a.vip
*.ovo99a.vip
paywix.online
*.paywix.online
portail-cse-france.fr
*.portail-cse-france.fr
primeradivision.com
*.primeradivision.com
sweetlook.co.uk
*.sweetlook.co.uk
*.login.tvzota100.com
tvzota100.com
*.tvzota100.com
*.www.tvzota100.com
wpolitece.pl
*.wpolitece.pl
Other domains in certificate