Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=fitnesstorino.it
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 05, 2026
Valid Until
May 06, 2026
79 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
2C:21:7D:60:5B:CF:27:99:1D:7B:40:E1:8A:89:B7:AD:53:61:C7:AF:32:22:A9:24:B0:C2:39:49:CD:B2:D8:A1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
excelendonj.com
*.excelendonj.com
emagzid.com
*.emagzid.com
emperor92.com
*.emperor92.com
employee-health-dk-8352.click
*.employee-health-dk-8352.click
energysupplychain.it
*.energysupplychain.it
entrance-exam-257320392.click
*.entrance-exam-257320392.click
epicgameblast.com
*.epicgameblast.com
ercfact.com
*.ercfact.com
evwallcharger.com
*.evwallcharger.com
expandeveryone.cyou
*.expandeveryone.cyou
ezk29l7q.com
*.ezk29l7q.com
f15ex.com
*.f15ex.com
f64359373.com
*.f64359373.com
f64384645.com
*.f64384645.com
f64394153.com
*.f64394153.com
f64444409.com
*.f64444409.com
f64454418.com
*.f64454418.com
f64598574.com
*.f64598574.com
facture.it
*.facture.it
fanciulla.it
*.fanciulla.it
fancyadate.com
*.fancyadate.com
fandioms.com
*.fandioms.com
fanfarer.com
*.fanfarer.com
fannyconshop.com
*.fannyconshop.com
fashion4all.vip
*.fashion4all.vip
fashionpeephole.com
*.fashionpeephole.com
fastman.sbs
*.fastman.sbs
firstpartyoperator.com
*.firstpartyoperator.com
fitnesslifepathways.xyz
*.fitnesslifepathways.xyz
fitnesstorino.it
*.fitnesstorino.it
flight-reservation-217970881.click
*.flight-reservation-217970881.click
fordealzaab.shop
*.fordealzaab.shop
forexvr.com
*.forexvr.com
formbootwaiting.baby
*.formbootwaiting.baby
fp8888.com
*.fp8888.com
fpyja.com
*.fpyja.com
freephonecall.it
*.freephonecall.it
freshsylora.tech
*.freshsylora.tech
frmcz.loan
*.frmcz.loan
fsn39.top
*.fsn39.top
fullsail.health
*.fullsail.health
fuocd.loan
*.fuocd.loan
futureinvestinggains.sbs
*.futureinvestinggains.sbs
futuroconbeneficio.com
*.futuroconbeneficio.com
fyxsus.pro
*.fyxsus.pro
Other domains in certificate