Open
Cached
·
just now
79/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=learningdesign.it
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 25, 2026
Valid Until
May 26, 2026
88 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B1:BA:A9:76:D6:75:48:87:23:22:EC:5C:8A:ED:7C:9C:C9:43:0F:75:0C:E2:EC:89:5F:23:F4:18:07:1C:58:5C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
drawn.us
*.drawn.us
*.sitemaps.drawn.us
*.store.drawn.us
armybodyfatcalculator.us
*.armybodyfatcalculator.us
*.www.armybodyfatcalculator.us
brownground.com
*.brownground.com
*.sitemaps.brownground.com
corvetts.com
*.corvetts.com
*.forums.corvetts.com
*.random.corvetts.com
*.ww16.corvetts.com
dentalreferrals.org
*.dentalreferrals.org
*.mail.dentalreferrals.org
*.pacs.dentalreferrals.org
*.ww25.dentalreferrals.org
*.argo.findacoder.com
*.citrix.findacoder.com
findacoder.com
*.findacoder.com
*.gw.findacoder.com
*.hostmaster.findacoder.com
*.i.findacoder.com
*.idpd.findacoder.com
*.khapps.findacoder.com
*.mail.findacoder.com
*.superset.findacoder.com
*.vpn5a.findacoder.com
*.vpn5b.findacoder.com
*.vpnapac.findacoder.com
*.vpnpa.findacoder.com
*.vpntoj.findacoder.com
*.webmail.findacoder.com
*.xd.findacoder.com
*.api.gbmart.in
gbmart.in
*.gbmart.in
*.abtr.iler.it
*.easym.iler.it
*.iite.iler.it
iler.it
*.iler.it
*.95vhx.innovativediyexploration.xyz
*.bnbod.innovativediyexploration.xyz
*.fz4qv.innovativediyexploration.xyz
innovativediyexploration.xyz
*.innovativediyexploration.xyz
*.l0r4m.innovativediyexploration.xyz
*.l7nqb.innovativediyexploration.xyz
klik-website-resmi-kami.church
*.klik-website-resmi-kami.church
*.recette.klik-website-resmi-kami.church
*.demo.learningdesign.it
learningdesign.it
*.learningdesign.it
*.ciscovpn.marulanda.com
*.comune.marulanda.com
marulanda.com
*.marulanda.com
*.mx.marulanda.com
noramptrailers.com.au
*.noramptrailers.com.au
*.prod.noramptrailers.com.au
*.ww38.noramptrailers.com.au
*.mail.pecaguapotavel.store
pecaguapotavel.store
*.pecaguapotavel.store
pelayos.com
*.pelayos.com
pokerstore.com.au
*.pokerstore.com.au
*.ww38.pokerstore.com.au
priortydispatch.net
*.priortydispatch.net
*.ww38.priortydispatch.net
*.hostmaster.qvod.org
qvod.org
*.qvod.org
scooterz.com.au
*.scooterz.com.au
*.g22y8.travelexperiencedreams.xyz
*.lkzdx.travelexperiencedreams.xyz
*.niw2v.travelexperiencedreams.xyz
travelexperiencedreams.xyz
*.travelexperiencedreams.xyz
*.wsct4.travelexperiencedreams.xyz
Other domains in certificate