Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=1216.it
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 05, 2026
Valid Until
May 06, 2026
82 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3D:DF:C9:44:F4:98:EB:84:63:07:33:B3:F3:16:20:38:00:9B:9D:37:94:D1:B3:80:5C:21:28:27:3F:F3:91:FA
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
danieldrake.com
*.danieldrake.com
1216.it
*.1216.it
*.demo.1216.it
*.dev.1216.it
cslluat.com
*.cslluat.com
csmin.xyz
*.csmin.xyz
csrzt.net
*.csrzt.net
cszki.pro
*.cszki.pro
cumverse.ai
*.cumverse.ai
cunsaam.in
*.cunsaam.in
cursive.it
*.cursive.it
customerpack.com
*.customerpack.com
cvnvwua.com
*.cvnvwua.com
d3621c.top
*.d3621c.top
damgt.com
*.damgt.com
dance24.com
*.dance24.com
danceacademy-show.one
*.danceacademy-show.one
dancecontest.it
*.dancecontest.it
danefloist.com
*.danefloist.com
danielpinchbeck.net
*.danielpinchbeck.net
databusinessai.com
*.databusinessai.com
davemercier.com
*.davemercier.com
dddhxf.bid
*.dddhxf.bid
deepseekj.com
*.deepseekj.com
delihyper.com
*.delihyper.com
demolizioniescavi.it
*.demolizioniescavi.it
densu-69.com
*.densu-69.com
designerapprovedfashion.net
*.designerapprovedfashion.net
deskroller.com
*.deskroller.com
devilterdepan.vip
*.devilterdepan.vip
dhdjl.academy
*.dhdjl.academy
dickpondstore.com
*.dickpondstore.com
digital-twin.engineer
*.digital-twin.engineer
directdeepseek.com
*.directdeepseek.com
discoverbyteszone.com
*.discoverbyteszone.com
discovertrackly.com
*.discovertrackly.com
sexycoppia.it
*.sexycoppia.it
*.zwogidemo.sexycoppia.it
typsycourseproject.com
*.typsycourseproject.com
tytlez.com
*.tytlez.com
ucokslot2k.click
*.ucokslot2k.click
ufa013.me
*.ufa013.me
*.1995.viii.it
*.shareholder.viii.it
viii.it
*.viii.it
*.siubania.vocer.com
*.srobe.vocer.com
vocer.com
*.vocer.com
Other domains in certificate