DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=intensi.it
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 24, 2026
Valid Until
May 25, 2026 87 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B4:9F:DA:E4:4B:B8:17:9B:92:FC:6B:98:F4:E4:7E:25:48:58:48:C9:B1:8B:68:FB:0A:E5:A4:B3:15:D6:06:15
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
intensi.it *.intensi.it *.remote.intensi.it

Other domains in certificate

*.4e13100a21272bc4ddcd0eeaff0baa5c.891cyhc.top 891cyhc.top *.891cyhc.top *.gjdvb.891cyhc.top *.zl1z8.891cyhc.top
buyden.com *.buyden.com
*.admin.conitech.it *.analytic.conitech.it *.api.conitech.it *.app.conitech.it *.backend.conitech.it conitech.it *.conitech.it *.data.conitech.it *.demo.conitech.it *.dev.conitech.it *.mail.conitech.it *.mail10.conitech.it *.metric.conitech.it *.metrics.conitech.it *.notexistsadmin.conitech.it *.notexistsapp.conitech.it *.notexistsdemo.conitech.it *.prod.conitech.it *.remote.conitech.it *.report.conitech.it *.staging.conitech.it *.stats.conitech.it *.superset.conitech.it *.supersets.conitech.it *.visual.conitech.it *.vpn.conitech.it
fuella.com *.fuella.com
*.acces.goolgemail.com *.access.goolgemail.com *.aspmx2.goolgemail.com *.connect.goolgemail.com *.data.goolgemail.com *.dzjt.goolgemail.com *.eposta.goolgemail.com *.erp.goolgemail.com *.ex02.goolgemail.com *.exch2016.goolgemail.com *.exchangecorp.goolgemail.com *.gateway.goolgemail.com goolgemail.com *.goolgemail.com *.l.goolgemail.com *.m.goolgemail.com *.mail.goolgemail.com *.mail3.goolgemail.com *.rds1.goolgemail.com *.vpn-monitor.goolgemail.com *.vpnssl.goolgemail.com
jameka.com *.jameka.com
*.api.lixi.my *.app.lixi.my *.assets.lixi.my *.dev.lixi.my *.hostmaster.lixi.my *.jyknptest.lixi.my lixi.my *.lixi.my *.test.lixi.my *.www.lixi.my
makeupfrit.com *.makeupfrit.com *.w3j580ms6ka0p0v5jo8me9ga.makeupfrit.com *.w56h4nje9rf59ou538qje9hq.makeupfrit.com *.wnq68vetvii7qtu5jv0rqd5r.makeupfrit.com
*.api.thedull.co *.app.thedull.co *.hostmaster.thedull.co *.test.thedull.co thedull.co *.thedull.co *.www.thedull.co
tqlk.com *.tqlk.com
*.auth.worldsgreatestwomen.com *.rd.worldsgreatestwomen.com *.repositorio.worldsgreatestwomen.com worldsgreatestwomen.com *.worldsgreatestwomen.com