Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=bonos.it
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 24, 2026
Valid Until
August 22, 2026
68 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
53:03:8B:B1:FF:E3:13:66:83:11:55:1F:ED:75:23:9E:24:A5:97:CB:1B:54:EC:51:EB:45:BA:A7:27:F1:75:D8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
hlnkaetdkv.com
*.hlnkaetdkv.com
*.c1.hlnkaetdkv.com
*.c2.hlnkaetdkv.com
*.c3.hlnkaetdkv.com
*.c4.hlnkaetdkv.com
*.c6.hlnkaetdkv.com
*.c7.hlnkaetdkv.com
*.hyper.hlnkaetdkv.com
*.stage1.hlnkaetdkv.com
*.static-s3.hlnkaetdkv.com
*.ww38.hlnkaetdkv.com
*.8960ee35-d482-4584-8efa-e2e07d97eb10.bauhas.cz
*.admin.bauhas.cz
*.api.bauhas.cz
bauhas.cz
*.bauhas.cz
*.demo.bauhas.cz
*.http.bauhas.cz
*.idnes.bauhas.cz
*.jenkins-dev.bauhas.cz
*.katalogy.bauhas.cz
*.m.bauhas.cz
*.search.bauhas.cz
*.ww1.bauhas.cz
*.ww35.bauhas.cz
*.ww38.bauhas.cz
*.www.bauhas.cz
*.ywnakbpf.bauhas.cz
blackedhub.co
*.blackedhub.co
*.server1.blackedhub.co
bonos.it
*.bonos.it
*.hostmaster.bonos.it
*.aqzmk.finanzasia.xyz
*.backup.finanzasia.xyz
*.bdgxptan.finanzasia.xyz
*.cb4ec426-b664-48cd-9f8c-254e0bbdcaf3.finanzasia.xyz
*.cnfr9.finanzasia.xyz
*.d.finanzasia.xyz
*.dashboard.finanzasia.xyz
*.eyqjuxag.finanzasia.xyz
*.f5c41c53-6260-4d7a-88a3-7c72abe525f3.finanzasia.xyz
finanzasia.xyz
*.finanzasia.xyz
*.marketing.finanzasia.xyz
*.nhceqvtj.finanzasia.xyz
*.ov3f7l.finanzasia.xyz
*.reyshdav.finanzasia.xyz
*.rsjevkao.finanzasia.xyz
*.test.finanzasia.xyz
*.tkxwlyog.finanzasia.xyz
*.xaecjkno.finanzasia.xyz
*.zqijemva.finanzasia.xyz
giangsports.com
*.giangsports.com
*.orwww.giangsports.com
*.ww25.giangsports.com
*.comwww.petsupplyhouse.com
petsupplyhouse.com
*.petsupplyhouse.com
*.ww25.petsupplyhouse.com
*.payment.sohooffers.xyz
sohooffers.xyz
*.sohooffers.xyz
*.aoym.tstamm.com
*.cuwlij.tstamm.com
*.hcxtf.tstamm.com
*.jxopg.tstamm.com
*.kjbbn.tstamm.com
*.krenbb.tstamm.com
tstamm.com
*.tstamm.com
*.wehqo.tstamm.com
*.dgy38y26.vjjlletkhc7mmb3b3gyg.top
*.jnsvnny1.vjjlletkhc7mmb3b3gyg.top
*.lh6j75.vjjlletkhc7mmb3b3gyg.top
*.tk4i4ft8.vjjlletkhc7mmb3b3gyg.top
vjjlletkhc7mmb3b3gyg.top
*.vjjlletkhc7mmb3b3gyg.top
*.app.xn--fiqr2v7og0k3c.com
*.mobile.xn--fiqr2v7og0k3c.com
*.qxpni4jl84m8ah1x.xn--fiqr2v7og0k3c.com
*.www.xn--fiqr2v7og0k3c.com
xn--fiqr2v7og0k3c.com
*.xn--fiqr2v7og0k3c.com
*.pay.xsnipe.xyz
xsnipe.xyz
*.xsnipe.xyz
Other domains in certificate