DNS Gurus
Cached · just now
91/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=insensato.it
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 22, 2026
Valid Until
July 21, 2026 60 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
43:D6:12:6B:7F:32:91:2C:AE:10:C1:BE:3D:69:C6:48:C9:5F:2C:11:33:CE:6D:75:C2:AB:59:69:CE:40:AE:CE
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Excellent
max-age=31536000; includeSubDomains; preload
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Excellent
DENY
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin
Permissions-Policy
Present
geolocation=(), midi=(), sync-xhr=(); +6 more
Recommendations
  • Add Content-Security-Policy header to prevent XSS attacks

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
kuechenklaus.de *.kuechenklaus.de *.uat.kuechenklaus.de

Other domains in certificate

17rack.net *.17rack.net *.t.17rack.net *.ww25.17rack.net
8887729.com *.8887729.com *.random.8887729.com *.ww25.8887729.com
aldenhoven.com *.aldenhoven.com
bricy.com *.bricy.com
clothit.io *.clothit.io *.shop.clothit.io *.sizetalk.clothit.io
*.cpcontacts.e-cracer.de e-cracer.de *.e-cracer.de
estudiosregionales.org *.estudiosregionales.org *.ww38.estudiosregionales.org
findavan.co.uk *.findavan.co.uk
flixstor.nu *.flixstor.nu *.random.flixstor.nu *.ww25.flixstor.nu *.ww38.flixstor.nu
grandfatherclocks.uk *.grandfatherclocks.uk
insensato.it *.insensato.it *.remote.insensato.it
lovepuppy.com *.lovepuppy.com *.random.lovepuppy.com *.ww38.lovepuppy.com
*.cxcdk.musicaltheatreraves.co.uk musicaltheatreraves.co.uk *.musicaltheatreraves.co.uk
nap-refund.com *.nap-refund.com *.ww38.nap-refund.com
predico.pl *.predico.pl
premuimize.me *.premuimize.me
*.cpcalendars.provasdeconcursos.com.br provasdeconcursos.com.br *.provasdeconcursos.com.br *.random.provasdeconcursos.com.br
ranjit.co.uk *.ranjit.co.uk
shoelace.co.uk *.shoelace.co.uk
simplecloud.cc *.simplecloud.cc *.ww38.simplecloud.cc
thedirty.it *.thedirty.it *.www.thedirty.it
*.hostmaster.thunbtack.com thunbtack.com *.thunbtack.com
*.apps.wampiry.com *.art.wampiry.com *.director.wampiry.com *.hostmaster.wampiry.com *.images.wampiry.com *.img.wampiry.com *.jocuri.wampiry.com *.katalog.wampiry.com *.krwionosny.wampiry.com *.office.wampiry.com *.random.wampiry.com *.search.wampiry.com *.test.wampiry.com *.video.wampiry.com wampiry.com *.wampiry.com *.ww17.wampiry.com *.zabawa.wampiry.com
*.ww25.xn--qytq6t.com *.ww38.xn--qytq6t.com xn--qytq6t.com *.xn--qytq6t.com