Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=nell.it
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 18, 2026
Valid Until
August 16, 2026
86 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
91:20:0E:74:0D:6A:DA:67:EF:CE:01:54:75:E7:69:D6:D7:12:95:68:08:FD:1A:D5:D7:24:7F:DC:51:A0:8C:F2
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
insidersai.com
*.insidersai.com
*.m.insidersai.com
*.sitemap.insidersai.com
*.athens.crozetselfstorage.com
*.berwyn.crozetselfstorage.com
*.chicago-heights.crozetselfstorage.com
*.chicago.crozetselfstorage.com
*.cleveland.crozetselfstorage.com
*.columbus-oh.crozetselfstorage.com
crozetselfstorage.com
*.crozetselfstorage.com
*.evri.crozetselfstorage.com
*.kent.crozetselfstorage.com
*.marion.crozetselfstorage.com
*.powell.crozetselfstorage.com
*.demo.dpusolutions.com
dpusolutions.com
*.dpusolutions.com
*.blog.ecampaignsnetwork.com
*.business.ecampaignsnetwork.com
*.dash.ecampaignsnetwork.com
*.demo-viz.ecampaignsnetwork.com
ecampaignsnetwork.com
*.ecampaignsnetwork.com
*.prod.ecampaignsnetwork.com
*.cpcontacts.godowncfc.org
godowncfc.org
*.godowncfc.org
*.asia.hockyquandoi2025.com
*.cdn.hockyquandoi2025.com
*.ha.hockyquandoi2025.com
hockyquandoi2025.com
*.hockyquandoi2025.com
*.ns10.hockyquandoi2025.com
*.ns101.hockyquandoi2025.com
*.ns104.hockyquandoi2025.com
*.ns11.hockyquandoi2025.com
*.ns112.hockyquandoi2025.com
*.ns113.hockyquandoi2025.com
*.ns118.hockyquandoi2025.com
*.ns124.hockyquandoi2025.com
*.ns161.hockyquandoi2025.com
*.ns2.hockyquandoi2025.com
*.ns22.hockyquandoi2025.com
*.ns292.hockyquandoi2025.com
*.ns31.hockyquandoi2025.com
*.ns4.hockyquandoi2025.com
*.ns59.hockyquandoi2025.com
*.ns73.hockyquandoi2025.com
*.ns81.hockyquandoi2025.com
*.ns94.hockyquandoi2025.com
*.ns95.hockyquandoi2025.com
*.ns99.hockyquandoi2025.com
*.admin.nell.it
*.api.nell.it
*.beta.nell.it
*.dashboard.nell.it
*.dev.nell.it
*.hostmaster.nell.it
nell.it
*.nell.it
*.party.nell.it
*.remote.nell.it
*.sch.nell.it
*.staging.nell.it
*.superset.nell.it
*.supersets.nell.it
*.toer.nell.it
rinker-bau.de
*.rinker-bau.de
*.ww25.rinker-bau.de
*.www2.rinker-bau.de
*.admin.witty.it
*.analytic.witty.it
*.api.witty.it
*.app.witty.it
*.bi.witty.it
*.dashboard.witty.it
*.demo.witty.it
*.hostmaster.witty.it
*.https.witty.it
*.itwww.witty.it
*.staging.witty.it
*.superset.witty.it
*.viz.witty.it
witty.it
*.witty.it
*.wwe.witty.it
*.www.witty.it
Other domains in certificate