SSL Certificate Analysis for deepone.it - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=ioffers.co.uk

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

February 17, 2026

Valid Until

May 18, 2026 86 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

12:10:A4:E9:D7:E7:9D:5A:F4:CD:01:77:7C:BE:ED:2E:3A:C1:68:1A:A7:12:90:67:84:9C:D6:A1:42:77:3A:5F

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

deepone.it *.deepone.it *.admin.deepone.it *.api.deepone.it *.intelligence.deepone.it

Other domains in certificate

937crxy301.top *.937crxy301.top *.new.937crxy301.top

beretta.live *.beretta.live *.www.beretta.live

*.ccinls.cclog.net cclog.net *.cclog.net

*.admin.deepsafe.fun *.api.deepsafe.fun *.app.deepsafe.fun deepsafe.fun *.deepsafe.fun *.dev.deepsafe.fun *.hostmaster.deepsafe.fun *.www.deepsafe.fun

ioffers.co.uk *.ioffers.co.uk

*.demo.multihost.it multihost.it *.multihost.it

*.clob.poltmarket.com *.cloud.poltmarket.com *.dev.poltmarket.com *.development.poltmarket.com *.dma.poltmarket.com *.edit.poltmarket.com *.enigsdevelopment.poltmarket.com *.new.poltmarket.com poltmarket.com *.poltmarket.com *.rd.poltmarket.com *.rds.poltmarket.com *.rdweb.poltmarket.com *.remote.poltmarket.com *.report.poltmarket.com *.summary.poltmarket.com *.vpn.poltmarket.com *.ww5.poltmarket.com *.www.poltmarket.com

*.2353358c-0b05-44bb-ab5a-71b33440059f.ray2.video *.admin.ray2.video *.api.ray2.video *.app.ray2.video *.assets.ray2.video *.autodiscover.ray2.video *.dev.ray2.video *.docs.ray2.video *.hostmaster.ray2.video *.intranet.ray2.video *.lvgdnmy.ray2.video *.my.ray2.video *.portal.ray2.video *.public.ray2.video ray2.video *.ray2.video *.share.ray2.video *.sharepoint.ray2.video

*.random.rewarded.au rewarded.au *.rewarded.au

*.mx.stom.it stom.it *.stom.it

*.ns5.tophomedoor.com tophomedoor.com *.tophomedoor.com

*.admin.trsfinest.com *.backend.trsfinest.com *.m.trsfinest.com trsfinest.com *.trsfinest.com *.www.trsfinest.com

*.dl53vt.truyen247.top truyen247.top *.truyen247.top

*.demo.xxxfreexxx.cc *.hotfix.xxxfreexxx.cc *.india.xxxfreexxx.cc *.pornhub.xxxfreexxx.cc *.uat.xxxfreexxx.cc *.ww25.xxxfreexxx.cc xxxfreexxx.cc *.xxxfreexxx.cc