Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=chot.it
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
March 23, 2026
Valid Until
June 21, 2026
33 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
18:18:18:5A:BF:62:51:38:74:31:6F:F7:9A:63:89:03:28:FF:77:18:B6:63:60:C9:21:02:72:2B:78:AA:BC:C5
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
ip2.it
*.ip2.it
358344.lol
*.358344.lol
*.assets.358344.lol
*.c10f0d64-b6b4-464c-8b27-00c722149edd.358344.lol
*.ftp.358344.lol
*.hr.358344.lol
*.intranet.358344.lol
*.analytics.chot.it
chot.it
*.chot.it
*.hostmaster.chot.it
*.research.chot.it
*.stats.chot.it
*.superset.chot.it
*.visual.chot.it
*.xmpp.chot.it
committed.life
*.committed.life
*.fully.committed.life
*.random.committed.life
*.secure.committed.life
dewidewitoto-lx2.xyz
*.dewidewitoto-lx2.xyz
*.wildcard.dewidewitoto-lx2.xyz
*.ww38.dewidewitoto-lx2.xyz
fritland.eu
*.fritland.eu
guideapp.it
*.guideapp.it
harz.it
*.harz.it
homemate.it
*.homemate.it
horizonnyc.com
*.horizonnyc.com
*.wildcard.horizonnyc.com
immaginidisardegna.it
*.immaginidisardegna.it
importanza.it
*.importanza.it
*.admin.importtoeu.com
*.api.importtoeu.com
*.assets.importtoeu.com
*.blog.importtoeu.com
*.bpqgqtest.importtoeu.com
*.d26a062b-9ad1-472f-a5b9-14db0afd1d0c.importtoeu.com
*.demo.importtoeu.com
*.dev.importtoeu.com
*.ebcpidemo.importtoeu.com
*.hostmaster.importtoeu.com
importtoeu.com
*.importtoeu.com
*.lqszwbpqgqtest.importtoeu.com
*.members.importtoeu.com
*.staging.importtoeu.com
*.test.importtoeu.com
*.uat.importtoeu.com
*.voorraad.importtoeu.com
inace.it
*.inace.it
interisti.it
*.interisti.it
interpretariate.it
*.interpretariate.it
lacittadeglianimali.it
*.lacittadeglianimali.it
lightsaber.it
*.lightsaber.it
marinamogiliko.co
*.marinamogiliko.co
*.3y.myocean.top
myocean.top
*.myocean.top
*.7538624d-2ceb-4f15-ae73-0bd9a348dec5.thebigevents.com
*.apps.thebigevents.com
*.drive.thebigevents.com
*.gateway.thebigevents.com
*.git.thebigevents.com
*.gxelfdesktop.thebigevents.com
thebigevents.com
*.thebigevents.com
*.webvpn.thebigevents.com
*.control.toonskiduniya.in
toonskiduniya.in
*.toonskiduniya.in
*.ww38.toonskiduniya.in
*.www.toonskiduniya.in
Other domains in certificate