Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=lanuovaera.it
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
June 04, 2026
Valid Until
September 02, 2026
87 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C2:24:2B:26:A6:2A:0E:DE:E2:46:F5:89:A1:5A:DA:70:82:A3:73:AB:F3:4C:99:26:E6:D3:CB:B7:7A:23:5D:54
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
dubricolage.com
*.dubricolage.com
*.authsmtp.dubricolage.com
*.hostmaster.dubricolage.com
aatoolkit.com
*.aatoolkit.com
*.random.aatoolkit.com
*.admin.authenticate.bot
*.app.authenticate.bot
authenticate.bot
*.authenticate.bot
*.backup.authenticate.bot
*.dashboard.authenticate.bot
*.demo.authenticate.bot
*.dev.authenticate.bot
*.mail.authenticate.bot
*.mdipjacc.authenticate.bot
*.mvsnquat.authenticate.bot
*.stg.authenticate.bot
*.test.authenticate.bot
*.v2.authenticate.bot
*.web.authenticate.bot
beers.business
*.beers.business
*.hostmaster.beers.business
*.www.beers.business
friedchicken.ai
*.friedchicken.ai
*.random.friedchicken.ai
jeetmoney.info
*.jeetmoney.info
*.ms766h.jeetmoney.info
*.www.jeetmoney.info
*.autodiscover.jurnaldenord.info
*.cpanel.jurnaldenord.info
jurnaldenord.info
*.jurnaldenord.info
*.mail.jurnaldenord.info
*.www.jurnaldenord.info
lanuovaera.it
*.lanuovaera.it
*.acommtw.lovingnature.org
*.ajitacreative.lovingnature.org
*.cangcing.lovingnature.org
*.cpanel.lovingnature.org
*.d17store.lovingnature.org
*.dmg-brighttime.lovingnature.org
*.dmg.lovingnature.org
*.elitepg.lovingnature.org
*.elsife.lovingnature.org
*.elsifebeauty.lovingnature.org
*.inla-indonesia.lovingnature.org
lovingnature.org
*.lovingnature.org
*.m.lovingnature.org
*.mail.lovingnature.org
*.maitreyacomic.lovingnature.org
*.nagakomodo.lovingnature.org
*.onlineclass.lovingnature.org
*.rab.lovingnature.org
*.random.lovingnature.org
*.rimba.lovingnature.org
*.sekolahkeluargauniversal.lovingnature.org
*.sku.lovingnature.org
*.stabmaitreyawira.lovingnature.org
*.staging-inla.lovingnature.org
*.the-inla.lovingnature.org
*.id.offersgets.com
offersgets.com
*.offersgets.com
runlinelab.com
*.runlinelab.com
*.administrator.sensetspiritualite.com
*.cbxbjk.sensetspiritualite.com
*.m.sensetspiritualite.com
sensetspiritualite.com
*.sensetspiritualite.com
*.fr.sinclairwatch.org
*.m.sinclairwatch.org
sinclairwatch.org
*.sinclairwatch.org
*.ww1.sinclairwatch.org
*.www.sinclairwatch.org
*.0nefg8.span.network
*.m.span.network
span.network
*.span.network
*.quiz.trendkovetok.com
trendkovetok.com
*.trendkovetok.com
Other domains in certificate