Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=analisifinanziarie.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 02, 2026
Valid Until
May 03, 2026
75 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
6E:07:C4:3D:A7:36:F4:55:61:3F:55:C5:FD:DC:C8:35:2D:E2:E3:3C:8D:67:A7:62:6E:3D:40:CD:49:23:C3:0D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
gianpietro.com
*.gianpietro.com
analisifinanziarie.com
*.analisifinanziarie.com
bedandbreakfastlastminute.com
*.bedandbreakfastlastminute.com
cocito.com
*.cocito.com
collimators.net
*.collimators.net
comico.co
*.comico.co
compagniedivolo.com
*.compagniedivolo.com
comportamenti.com
*.comportamenti.com
condivisi.com
*.condivisi.com
confienza.com
*.confienza.com
consigliatevi.com
*.consigliatevi.com
copii.com
*.copii.com
d110zm7.cyou
*.d110zm7.cyou
daba.net
*.daba.net
diluente.com
*.diluente.com
dizionaridinglese.com
*.dizionaridinglese.com
ehainele.ro
*.ehainele.ro
elettroambiente.com
*.elettroambiente.com
email-targeting.com
*.email-targeting.com
entrato.com
*.entrato.com
excitesports.com
*.excitesports.com
falei.com
*.falei.com
feijisu26.com
*.feijisu26.com
financialfreedomtips.com
*.financialfreedomtips.com
francesismo.com
*.francesismo.com
francisca.com
*.francisca.com
fruitori.com
*.fruitori.com
genuinemusic.com
*.genuinemusic.com
get-codeninja-team.com
*.get-codeninja-team.com
gradinata.com
*.gradinata.com
growellmarkets.com
*.growellmarkets.com
guadagnareconisondaggi.com
*.guadagnareconisondaggi.com
haleigh.net
*.haleigh.net
happy5-batik77.click
*.happy5-batik77.click
horasart.com
*.horasart.com
hotelduphare.com
*.hotelduphare.com
ilgiocodigitale.com
*.ilgiocodigitale.com
imercenari.com
*.imercenari.com
insidestraightdraw.com
*.insidestraightdraw.com
inti2013.com
*.inti2013.com
intrenet.net
*.intrenet.net
lapaginadeimutui.com
*.lapaginadeimutui.com
pussyparade.com
*.pussyparade.com
qplung.com
*.qplung.com
rimborsoelettorale.com
*.rimborsoelettorale.com
Other domains in certificate