Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=oyb.it
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 25, 2026
Valid Until
July 24, 2026
49 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4B:86:F2:8F:EF:77:D9:81:6F:5A:3F:63:7B:94:2D:60:60:95:20:F2:EC:49:DE:5F:33:CE:5A:90:DC:3A:E7:7F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
fect.it
*.fect.it
*.demo.fect.it
*.hardwaree.fect.it
*.reigns.fect.it
1779bet.vip
*.1779bet.vip
*.intranet.1779bet.vip
asador.com
*.asador.com
*.pelotari.asador.com
bizcraft.pro
*.bizcraft.pro
*.sitemaps.bizcraft.pro
*.calvatone.cr5.it
*.casalmaggiore.cr5.it
cr5.it
*.cr5.it
*.crema.cr5.it
*.forecast.cr5.it
*.hostmaster.cr5.it
*.mx.cr5.it
*.report.cr5.it
*.soncino.cr5.it
*.sospiro.cr5.it
*.studiovilla.cr5.it
*.superset.cr5.it
funrizecasino.com
*.funrizecasino.com
*.bump-as.hubfrontier.com
*.demo-nm2.hubfrontier.com
hubfrontier.com
*.hubfrontier.com
idi.com.pl
*.idi.com.pl
*.m.idi.com.pl
*.mail.idi.com.pl
*.aasd.insrtucture.com
*.awsacademy.insrtucture.com
*.collierschools.insrtucture.com
*.dcsdk12.insrtucture.com
*.hostmaster.insrtucture.com
insrtucture.com
*.insrtucture.com
*.uc-bcf.insrtucture.com
*.www.insrtucture.com
*.a.knockoutfouprgew.com
knockoutfouprgew.com
*.knockoutfouprgew.com
koreanclassmassive.com
*.koreanclassmassive.com
*.api.oyb.it
*.dddd.oyb.it
*.dev.oyb.it
*.hostmaster.oyb.it
oyb.it
*.oyb.it
*.remote.oyb.it
*.staging.oyb.it
poohbear.bet
*.poohbear.bet
*.app.right-way.co
*.desktops.right-way.co
*.mail3.right-way.co
*.rd1.right-way.co
right-way.co
*.right-way.co
*.sitemap.right-way.co
*.ts2.right-way.co
*.webvpn.right-way.co
*.hostmaster.sarkarinaukrinews.com
*.mail.sarkarinaukrinews.com
sarkarinaukrinews.com
*.sarkarinaukrinews.com
*.ww1.sarkarinaukrinews.com
*.ww16.sarkarinaukrinews.com
*.ww25.sarkarinaukrinews.com
*.ww38.sarkarinaukrinews.com
theculinaryhub.com
*.theculinaryhub.com
*.www.theculinaryhub.com
*.97sesecomwww.xxx333.com
*.com-www.xxx333.com
*.mail.xxx333.com
*.mailx.xxx333.com
*.ww16.xxx333.com
*.ww17.xxx333.com
*.ww25.xxx333.com
xxx333.com
*.xxx333.com
Other domains in certificate