Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=vuva.it
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 13, 2026
Valid Until
May 14, 2026
77 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F2:D3:2D:3A:11:60:B6:0A:74:C7:69:5F:BD:0B:EE:35:3D:72:BC:B9:68:DE:68:86:EE:FB:24:8E:D1:89:39:26
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
vuva.it
*.vuva.it
*.analytic.vuva.it
100pipsdailysetforget.com
*.100pipsdailysetforget.com
*.random.100pipsdailysetforget.com
*.11.amazonjob.co
*.16.amazonjob.co
*.25.amazonjob.co
*.4ab38eee-0629-4e42-b151-00c5d23fc65c.amazonjob.co
*.560d697e-7f72-43ac-86b0-70f32d3ddf7b.amazonjob.co
*.77eeb169-1f27-4950-9cf2-cc5858f4647d.amazonjob.co
*.aiyyh11.amazonjob.co
amazonjob.co
*.amazonjob.co
*.bemerwildcard.amazonjob.co
*.blog.amazonjob.co
*.ftp.amazonjob.co
*.hiring.amazonjob.co
*.m.amazonjob.co
*.remote.amazonjob.co
*.wildcard.amazonjob.co
*.ww11.amazonjob.co
*.ww16.amazonjob.co
*.ww17.amazonjob.co
*.ww25.amazonjob.co
*.ww38.amazonjob.co
britneytradespectrum.uk
*.britneytradespectrum.uk
callbucket.com
*.callbucket.com
*.hostmaster.callbucket.com
*.cpcalendars.dma247.com
dma247.com
*.dma247.com
*.sitemap.dma247.com
*.sitemaps.dma247.com
*.www.dma247.com
echoblog.online
*.echoblog.online
*.backend.freemodapks.xyz
freemodapks.xyz
*.freemodapks.xyz
*.staging.freemodapks.xyz
*.ww25.freemodapks.xyz
*.blog.lemonde.live
lemonde.live
*.lemonde.live
muensterland-ost.de
*.muensterland-ost.de
*.sparkasse.muensterland-ost.de
*.spk.muensterland-ost.de
*.13f168ecda54.neal.store
*.mail.neal.store
*.mailhost.neal.store
neal.store
*.neal.store
*.nitcdsarev2.neal.store
*.whm.neal.store
*.www.neal.store
*.cpanel.premiumsmsrefunds.com
premiumsmsrefunds.com
*.premiumsmsrefunds.com
*.opt.silver-crest.store
silver-crest.store
*.silver-crest.store
*.random.theedgeonbrickell.com
theedgeonbrickell.com
*.theedgeonbrickell.com
*.agent.theparttimejob.com
*.ai.theparttimejob.com
*.bi.theparttimejob.com
*.blog.theparttimejob.com
*.bot.theparttimejob.com
*.chat.theparttimejob.com
*.flowise.theparttimejob.com
*.prod.theparttimejob.com
*.rustore.theparttimejob.com
*.sandbox.theparttimejob.com
*.test.theparttimejob.com
*.test3.theparttimejob.com
theparttimejob.com
*.theparttimejob.com
*.uat.theparttimejob.com
*.ww17.theparttimejob.com
*.ww41.theparttimejob.com
*.cpanel.xn--666-7b4j940d.com
xn--666-7b4j940d.com
*.xn--666-7b4j940d.com
Other domains in certificate