Open
Cached
·
just now
79/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=deliverycard.it
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 04, 2026
Valid Until
May 05, 2026
79 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3F:BA:E2:9D:6D:A5:41:12:46:4A:45:B1:C2:7B:23:28:9E:4C:D7:E0:1F:99:08:13:D5:80:84:9E:26:37:88:6A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
dingrrk1.com
*.dingrrk1.com
deliverycard.it
*.deliverycard.it
dessertdelights.recipes
*.dessertdelights.recipes
dewiligamantap.xyz
*.dewiligamantap.xyz
digitalorganization.it
*.digitalorganization.it
dimsum.in
*.dimsum.in
directfield.it
*.directfield.it
ditodeon.xyz
*.ditodeon.xyz
dlbxhrtdyfyxgs.cn
*.dlbxhrtdyfyxgs.cn
door-replacement-job-grey-157-n.click
*.door-replacement-job-grey-157-n.click
dotati.it
*.dotati.it
drawdown.it
*.drawdown.it
easysight.us
*.easysight.us
elitelegend310.shop
*.elitelegend310.shop
englishcourse.it
*.englishcourse.it
eslotsweety.cfd
*.eslotsweety.cfd
eurorace.it
*.eurorace.it
exclusivecustom.it
*.exclusivecustom.it
filigranopencti.com
*.filigranopencti.com
finestfood.it
*.finestfood.it
fitnessgrowthdynamic.run
*.fitnessgrowthdynamic.run
fitnesslevelreveal.run
*.fitnesslevelreveal.run
fitnessstrengthbuilders.club
*.fitnessstrengthbuilders.club
fitnessvictoryrule.club
*.fitnessvictoryrule.club
photowriting.it
*.photowriting.it
piaoliuting.cn
*.piaoliuting.cn
piattaformafinanziaria.it
*.piattaformafinanziaria.it
play-comet-station.xyz
*.play-comet-station.xyz
play-heroic-haven.xyz
*.play-heroic-haven.xyz
play-max-crossing.xyz
*.play-max-crossing.xyz
play-stealth-ascent.xyz
*.play-stealth-ascent.xyz
play-venom-venture.xyz
*.play-venom-venture.xyz
poio.it
*.poio.it
polystyrene.it
*.polystyrene.it
prjaw.me
*.prjaw.me
promogirl.it
*.promogirl.it
psychiatric-medical-587534383.click
*.psychiatric-medical-587534383.click
puba.it
*.puba.it
qgjpsu.bid
*.qgjpsu.bid
quadra.it
*.quadra.it
rasputin.it
*.rasputin.it
*.access.tian.net
*.brothersltd.tian.net
*.etian.tian.net
tian.net
*.tian.net
*.tian.tian.net
*.tianwww.tian.net
Other domains in certificate