Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=bytime.it
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 14, 2026
Valid Until
July 13, 2026
38 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
1D:AB:FD:84:4E:F2:98:59:FC:EB:83:6A:C9:2E:E1:08:F1:49:9C:62:94:96:E6:79:AF:37:70:B2:26:C4:D6:C1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
joubuy.com
*.joubuy.com
*.old.joubuy.com
*.search.joubuy.com
bytime.it
*.bytime.it
*.hostmaster.bytime.it
*.0vgx.cirratus.org
*.1cm1.cirratus.org
*.23vf.cirratus.org
*.35i2.cirratus.org
*.brushes.cirratus.org
*.c5xd.cirratus.org
*.ceho.cirratus.org
cirratus.org
*.cirratus.org
*.hrii.cirratus.org
*.j5zr.cirratus.org
*.jaum.cirratus.org
*.ogam.cirratus.org
*.pddt.cirratus.org
*.q7wp.cirratus.org
*.s38e.cirratus.org
*.x6a3.cirratus.org
*.z8qm.cirratus.org
clods.it
*.clods.it
*.hostmaster.clods.it
*.mx.clods.it
*.www.clods.it
*.autodiscover.futebolplayhd.online
*.ftp.futebolplayhd.online
futebolplayhd.online
*.futebolplayhd.online
*.imap.futebolplayhd.online
*.m.futebolplayhd.online
*.mail.futebolplayhd.online
*.pop3.futebolplayhd.online
*.ww25.futebolplayhd.online
*.ww38.futebolplayhd.online
*.www.futebolplayhd.online
*.app.immediatewens30.com
immediatewens30.com
*.immediatewens30.com
lode88.homes
*.lode88.homes
*.m.lode88.homes
*.mx1.nastyhairypussy.com
nastyhairypussy.com
*.nastyhairypussy.com
*.staging.nastyhairypussy.com
*.mail.pentomatic.com
pentomatic.com
*.pentomatic.com
*.api.rentitfirst.com
rentitfirst.com
*.rentitfirst.com
*.superset.rentitfirst.com
*.www.rentitfirst.com
*.4daca12c-5e67-48ac-9db3-87da7d1cd5a1.seniorenbutler.com
*.96669a10-9943-40a7-9089-1c3297de8b19.seniorenbutler.com
*.aaa.seniorenbutler.com
*.aaca4530-5e0b-4b49-bdc9-084882398d64.seniorenbutler.com
*.acceptatie.seniorenbutler.com
*.app.seniorenbutler.com
*.b038b9cc-1f20-4e2a-98dd-9ee2a4c9f434.seniorenbutler.com
*.backup.seniorenbutler.com
*.bitrix.seniorenbutler.com
*.docs.seniorenbutler.com
*.external.seniorenbutler.com
*.f368bed5-230a-430d-ae05-89e3ef16fc2b.seniorenbutler.com
*.helpdesk.seniorenbutler.com
*.images.seniorenbutler.com
*.intranet.seniorenbutler.com
*.lksymportainer.seniorenbutler.com
*.mail.seniorenbutler.com
*.mdgqiacceptatie.seniorenbutler.com
*.member.seniorenbutler.com
*.my.seniorenbutler.com
*.portainer.seniorenbutler.com
*.portal.seniorenbutler.com
*.public.seniorenbutler.com
*.random.seniorenbutler.com
*.remote.seniorenbutler.com
seniorenbutler.com
*.seniorenbutler.com
*.share.seniorenbutler.com
*.sharepoint.seniorenbutler.com
*.vpn.seniorenbutler.com
*.wildcard.seniorenbutler.com
Other domains in certificate