Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=oxygenmeter.it
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 23, 2026
Valid Until
July 22, 2026
67 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
49:5E:64:8B:02:2C:0B:95:FC:6E:BF:C9:ED:11:F8:57:56:73:37:2F:78:0B:9C:C0:4E:D5:D1:E9:21:64:C7:66
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
deph.it
*.deph.it
67999.bet
*.67999.bet
*.ww25.67999.bet
aramex.bio
*.aramex.bio
*.ww25.aramex.bio
*.ww38.aramex.bio
azlegalhelp.org
*.azlegalhelp.org
*.old.azlegalhelp.org
classicpartstrader.co.uk
*.classicpartstrader.co.uk
combiner.it
*.combiner.it
edilizie.it
*.edilizie.it
fittasionline.it
*.fittasionline.it
fortehotels.it
*.fortehotels.it
gappay.net
*.gappay.net
*.bigboss.gxsd.shop
*.dev.gxsd.shop
gxsd.shop
*.gxsd.shop
*.news.gxsd.shop
hally.io
*.hally.io
healthy-side.online
*.healthy-side.online
*.5dd6dc4.ho7kmeb.top
ho7kmeb.top
*.ho7kmeb.top
*.btc.kisekicoin.site
kisekicoin.site
*.kisekicoin.site
*.ltc.kisekicoin.site
*.sol.kisekicoin.site
*.usdt.kisekicoin.site
kokonut.studio
*.kokonut.studio
*.analytics.lauta.it
*.email.lauta.it
*.hostmaster.lauta.it
*.imap.lauta.it
*.imap4.lauta.it
lauta.it
*.lauta.it
*.mail.lauta.it
*.mx.lauta.it
*.owa.lauta.it
*.remote.lauta.it
*.report.lauta.it
*.vpnssl.lauta.it
*.www.lauta.it
monzanote.com
*.monzanote.com
*.mail.mortgageguys.ca
mortgageguys.ca
*.mortgageguys.ca
nololungotermine.it
*.nololungotermine.it
*.api.oxygenmeter.it
*.demo.oxygenmeter.it
oxygenmeter.it
*.oxygenmeter.it
primefx365.info
*.primefx365.info
*.updates.primefx365.info
rentpoker.it
*.rentpoker.it
spanduk.com
*.spanduk.com
sunriseeatery2011.com
*.sunriseeatery2011.com
sweeps.it
*.sweeps.it
veegga-shopping.online
*.veegga-shopping.online
*.blachdach.xn--tarnw-3ta.com.pl
*.hostmaster.xn--tarnw-3ta.com.pl
*.polmark.xn--tarnw-3ta.com.pl
*.production.xn--tarnw-3ta.com.pl
*.www.xn--tarnw-3ta.com.pl
xn--tarnw-3ta.com.pl
*.xn--tarnw-3ta.com.pl
Other domains in certificate