Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=mtredi.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 13, 2026
Valid Until
August 11, 2026
68 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8A:F3:38:FC:DC:F0:D9:75:FE:B3:FB:FD:09:A8:0B:A0:16:B7:8A:EA:BF:2C:61:3B:6D:4D:4B:46:89:98:76:E1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
medison.it
*.medison.it
*.app.medison.it
*.connect.medison.it
*.email.medison.it
*.est-vpn.medison.it
*.hostmaster.medison.it
*.it.medison.it
*.khapps.medison.it
*.notexistscitrixcloud.medison.it
*.notexistsest-vpn.medison.it
*.rds.medison.it
*.remote.medison.it
*.ssl.medison.it
*.staging.medison.it
*.superset.medison.it
*.vpn.medison.it
*.webmail.medison.it
1116clx301.top
*.1116clx301.top
*.c565ebcd7b.1116clx301.top
193799.club
*.193799.club
*.2fwww.682xnxx.com
682xnxx.com
*.682xnxx.com
*.ci.682xnxx.com
*.k.682xnxx.com
*.plm.682xnxx.com
*.q.682xnxx.com
*.s.682xnxx.com
*.superset.682xnxx.com
*.t.682xnxx.com
*.visualizations.682xnxx.com
*.ww12.682xnxx.com
*.ww38.682xnxx.com
*.www.682xnxx.com
cestitkecitati.com
*.cestitkecitati.com
*.cpcalendars.cestitkecitati.com
*.remote.cestitkecitati.com
*.www.cestitkecitati.com
doapimihsurvey.space
*.doapimihsurvey.space
*.q3x.doapimihsurvey.space
*.tdepq5qv.doapimihsurvey.space
*.ww38.doapimihsurvey.space
goregistersam.com
*.goregistersam.com
*.track.goregistersam.com
*.autodiscover.granciudadsanta.com
*.cloud.granciudadsanta.com
*.cpcontacts.granciudadsanta.com
*.formacion.granciudadsanta.com
granciudadsanta.com
*.granciudadsanta.com
*.m.granciudadsanta.com
*.rd.granciudadsanta.com
*.rds.granciudadsanta.com
*.webdisk.granciudadsanta.com
keepreading.it
*.keepreading.it
*.admin.luckyou.it
*.analytics.luckyou.it
*.api.luckyou.it
*.backend.luckyou.it
*.hostmaster.luckyou.it
*.jwracstaging.luckyou.it
luckyou.it
*.luckyou.it
*.metric.luckyou.it
*.mx.luckyou.it
*.reports.luckyou.it
*.staging.luckyou.it
*.www.luckyou.it
*.32.mtredi.com
mtredi.com
*.mtredi.com
*.cloud.pickvyten.com
pickvyten.com
*.pickvyten.com
*.rds.pickvyten.com
*.rdweb.pickvyten.com
*.rd.supervyten.com
*.rds.supervyten.com
*.rdweb.supervyten.com
*.remote.supervyten.com
supervyten.com
*.supervyten.com
Other domains in certificate