Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=ambiental.it
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
March 17, 2026
Valid Until
June 15, 2026
42 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8D:FD:58:37:DD:C8:DC:F5:E7:59:53:1D:9A:1A:8F:C9:3C:23:41:B1:75:13:6E:20:10:4D:A9:1E:10:16:AD:34
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
88 domains
ambiental.it
*.ambiental.it
*.hostmaster.ambiental.it
223mwai.top
*.223mwai.top
57827.club
*.57827.club
60212.co
*.60212.co
6099w.tv
*.6099w.tv
638c.fo
*.638c.fo
74416.co
*.74416.co
815.me
*.815.me
91254.one
*.91254.one
92571.sbs
*.92571.sbs
960862.vip
*.960862.vip
accessmarketacquisitionexpert.co
*.accessmarketacquisitionexpert.co
ad-operationapp.com
*.ad-operationapp.com
amplifyvertexlogic.co
*.amplifyvertexlogic.co
appliancerepairtechsdaviefl.de
*.appliancerepairtechsdaviefl.de
businessfixhub.pro
*.businessfixhub.pro
c085925fd1870e42.com
*.c085925fd1870e42.com
cours-ssiap.com
*.cours-ssiap.com
cspankbang.com
*.cspankbang.com
fcen.cc
*.fcen.cc
flixcord.net
*.flixcord.net
frecuenciatropical.cl
*.frecuenciatropical.cl
gocloudzone.co
*.gocloudzone.co
goiquafifa.com
*.goiquafifa.com
heritagewealthcapitalservicesreach.co
*.heritagewealthcapitalservicesreach.co
ilboscopiza.com
*.ilboscopiza.com
jmfxqzk1170.vip
*.jmfxqzk1170.vip
lntrumoyj.com
*.lntrumoyj.com
medchatboost.co
*.medchatboost.co
mgkld.poker
*.mgkld.poker
movs3.com
*.movs3.com
ordergreenwoodgrill.com
*.ordergreenwoodgrill.com
*.ww38.ordergreenwoodgrill.com
profitcommunityalliance.de
*.profitcommunityalliance.de
roamfreetravel.live
*.roamfreetravel.live
swattvafrica.com
*.swattvafrica.com
tbxvo.poker
*.tbxvo.poker
teenyturtle.com
*.teenyturtle.com
tefatt.work
*.tefatt.work
theserenevalley.de
*.theserenevalley.de
turkey-nose-402693884.click
*.turkey-nose-402693884.click
urbangardenwhisper.xyz
*.urbangardenwhisper.xyz
v67m.icu
*.v67m.icu
xn--0g6a.com
*.xn--0g6a.com
Other domains in certificate