SSL Certificate Analysis for destroyer.it - Security Grade & TLS Configuration

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=demandmanagement.it

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

February 03, 2026

Valid Until

May 04, 2026 80 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

1B:3A:3B:AB:C7:AC:A7:BC:3F:42:99:F4:31:CD:BF:FD:E7:10:F4:49:20:67:12:EC:EB:DD:C7:A6:F4:00:9B:51

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

destroyer.it *.destroyer.it

Other domains in certificate

demandmanagement.it *.demandmanagement.it

designgame.it *.designgame.it

dietapertutti.it *.dietapertutti.it

diva.it *.diva.it

domainadvisors.it *.domainadvisors.it

dueamici.it *.dueamici.it

e5469139.vip *.e5469139.vip

ecollege.it *.ecollege.it

eli.it *.eli.it

elizabeth.it *.elizabeth.it

enough.it *.enough.it

europe-business.it *.europe-business.it

exceptions.it *.exceptions.it

facing.it *.facing.it

faruk.it *.faruk.it

fence.it *.fence.it

fesp.it *.fesp.it

fischia.it *.fischia.it

fishingline.it *.fishingline.it

flava.it *.flava.it

flipside.it *.flipside.it

fondazienda.it *.fondazienda.it

forselling.it *.forselling.it

fxihr.net *.fxihr.net

galattico.it *.galattico.it

gamology.it *.gamology.it

giochiitaliani.it *.giochiitaliani.it

girobet.pro *.girobet.pro

gramuv.com *.gramuv.com

huwa.it *.huwa.it

idomizrahi.com *.idomizrahi.com

ijmxt.bid *.ijmxt.bid

inwork.it *.inwork.it

j4jid0o.top *.j4jid0o.top

know-stage-719466461.click *.know-stage-719466461.click

mensarticles.com *.mensarticles.com

milliard.it *.milliard.it

myprof.it *.myprof.it

myroutes.it *.myroutes.it

novaledo.it *.novaledo.it

nufutei.info *.nufutei.info

nwoja.gdn *.nwoja.gdn

outdesign.it *.outdesign.it

pizzaincasa.it *.pizzaincasa.it