Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=carspecialist.it
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 23, 2026
Valid Until
July 22, 2026
66 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0C:0B:BC:0F:BA:6B:A6:20:F3:F7:F8:F9:82:A8:86:BC:22:AC:87:CC:1E:BF:CE:70:8F:26:F3:3A:5A:6A:AE:F0
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
bignumbersum.com
*.bignumbersum.com
*.api.bignumbersum.com
*.dev.bignumbersum.com
*.remote.bignumbersum.com
45677.xyz
*.45677.xyz
*.www.45677.xyz
99h.pw
*.99h.pw
*.en.99h.pw
*.admin.amalga.it
amalga.it
*.amalga.it
*.backend.amalga.it
*.hostmaster.amalga.it
*.remote.amalga.it
aviatrixcloudfirewall.com
*.aviatrixcloudfirewall.com
beechmanagement.com
*.beechmanagement.com
cap-eihuangpaisong.top
*.cap-eihuangpaisong.top
*.chasui.cap-eihuangpaisong.top
carspecialist.it
*.carspecialist.it
*.hostmaster.carspecialist.it
*.mx.carspecialist.it
*.www.carspecialist.it
*.4e827476-aacf-4034-a307-b1b4aa7e01e8.clarity.yachts
*.969bdb68-7b6c-4393-9863-e7ecd4a452a3.clarity.yachts
*.admin.clarity.yachts
*.api.clarity.yachts
*.app.clarity.yachts
*.backup.clarity.yachts
*.blog.clarity.yachts
clarity.yachts
*.clarity.yachts
*.demo.clarity.yachts
*.dev.clarity.yachts
*.f83ed1ef-0a91-4677-b2e3-cd21aa614b08.clarity.yachts
*.mta-sts.clarity.yachts
*.uat.clarity.yachts
*.www.clarity.yachts
dvcoe.fishing
*.dvcoe.fishing
fatihsuleymandenizolgun.com
*.fatihsuleymandenizolgun.com
*.ww7.fatihsuleymandenizolgun.com
growthscoop.com
*.growthscoop.com
*.sitemaps.growthscoop.com
insidertest.com
*.insidertest.com
jc0frc.cyou
*.jc0frc.cyou
*.app.laswiftxpress.online
*.ftp.laswiftxpress.online
*.home.laswiftxpress.online
laswiftxpress.online
*.laswiftxpress.online
*.sitemap.laswiftxpress.online
*.sitemaps.laswiftxpress.online
*.smtp.laswiftxpress.online
*.www.laswiftxpress.online
saudi-residence-visa.sbs
*.saudi-residence-visa.sbs
*.auth.teiegram.lat
teiegram.lat
*.teiegram.lat
*.notexistsmx.thebigbet.it
thebigbet.it
*.thebigbet.it
theunusualgiftcompany.com
*.theunusualgiftcompany.com
*.ww16.theunusualgiftcompany.com
*.ww38.theunusualgiftcompany.com
*.www.theunusualgiftcompany.com
*.hostmaster.ukimportedcar.com
*.localhost.ukimportedcar.com
*.m.ukimportedcar.com
ukimportedcar.com
*.ukimportedcar.com
*.vpn.ukimportedcar.com
*.www.ukimportedcar.com
ultimatescene.com
*.ultimatescene.com
utsouthwesternlaunchpad.com
*.utsouthwesternlaunchpad.com
Other domains in certificate