Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=amooto.it
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 29, 2025
Valid Until
February 27, 2026
88 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0D:CA:09:A2:31:B1:7B:64:EC:50:BD:4D:EB:3D:E6:DE:42:3A:6F:A6:8F:C4:77:5C:1E:BD:A6:45:F0:7D:4A:A1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
kwv.ee
test.072project.com
2.classmateshop.co.in
boards.a2-dev.fr
hopper.game.adiop.com
alpha.inc
amooto.it
app.analytics4people.com
beta.ancill.app
estudiofc.arq.br
artisan.furniture
refarmed.banksdev.dk
burritorescue.com
bytesage.dev
capitalvest.pro
nov.ciudapp.net
admin.theism.co.in
www.celebrationhomes.co.in
www.santoshmainali.com.np
www.smartindustry.com.pl
do-talk-drink.games
earningquiz.net
esgl.pro
www.familiarao.com.br
fazeli.dev
app.francomanca.co.uk
full66.com
www.full66.com
www.gameloaded.net
getherington.uk
auth.getsteamid.org
graysystems.net
greekdeveloper.com
dctdevgcpuk.staging.huma.com
i4p.tech
www.i4p.tech
skillsplanner.ifundi.ai
infinitecastle.dev
irenicj.dev
manastripathi.is-a.dev
www.johnrichartwork.co.uk
lesblesduchene.jorigine.fr
first.cube.wallpaper.kalyptex.com
lapizzeriadubrunpain.com
www.libertytips.com
www.lisareddig.com
mallinger.fr
mementotravelco.co.za
promocion-plis.metroarea.com.co
staging.integrations.metsights.com
quiz-mx2.moonsdental.rocks
www.mrbls.fun
link-test.mytoolr.com
nihitech.com
portfolio.nixkode.com
vendor-michael.nucor.report
www.onpageideas.com
www.onrecord.online
sldwma.opendata.report
links.optumfinancial.com
staging.backoffice.orbis-markets.com
www.palota.co
tk2023.partijplein.nl
pensive.dev
pululu-korea.com
radonccalc.radoncreview.org
www.gauth.rath.science
research.riple.org
ritin-raveendran.com
rockymtnview.com
www.samvadi.com
scolls.co
www.secpassgen.com
seekify.uk
urbeldanubio-admin.segurdiez.com
mobile.servicevanguard.com
sia.vision
apply.smeleasing.ie
www.sunriseschoolkandi.org
www.sunsetle.com
suryasrini.com
sushinamipt.com
systemiser.com.au
www.taption.com
staffdev.tassorbit.com.au
cabs.tcat.app
www.terranovita.com
tesoroholdings.co.za
theseopodcast.net
auth.titledock.com
www.tptycoon.com
portals.tracker-apps.com
www.unnurella.jp
dev.business.vezham.com
link.vinasoyshop.com
bergeys.vinsyt.com
viranshpapertube.com
ww-pcmaticsupport.com
yodawifhat.com
time.zoole.se
Other domains in certificate