Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=cosedilegno.it
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 17, 2026
Valid Until
May 18, 2026
88 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4B:71:8F:BE:31:66:F7:35:1B:BE:D3:21:6D:0B:3F:1C:63:10:4A:41:18:40:31:CF:ED:5E:6F:90:30:28:82:B4
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
eng.bio
*.eng.bio
*.ban.eng.bio
*.biochem.eng.bio
*.che.eng.bio
*.chem.eng.bio
*.eng.eng.bio
*.geo.eng.bio
*.hin.eng.bio
*.his.eng.bio
*.hist.eng.bio
*.hostmaster.eng.bio
*.hp.eng.bio
*.mal.eng.bio
*.mat.eng.bio
*.math.eng.bio
*.phy.eng.bio
*.stu.eng.bio
*.wed.eng.bio
accountdeal.com
*.accountdeal.com
*.sitemap.accountdeal.com
*.vpn.accountdeal.com
*.admin.breadclasaction.com
breadclasaction.com
*.breadclasaction.com
*.comms.breadclasaction.com
*.d82c816d-3aff-4be7-a4e5-1a579736c6c1.breadclasaction.com
*.jmanlremote.breadclasaction.com
*.rd.breadclasaction.com
*.rdweb.breadclasaction.com
*.remote.breadclasaction.com
*.staging.breadclasaction.com
*.www.breadclasaction.com
*.backend.cosedilegno.it
cosedilegno.it
*.cosedilegno.it
*.hostmaster.cosedilegno.it
*.alpha.hostingextra.it
*.dashboard.hostingextra.it
hostingextra.it
*.hostingextra.it
*.mail.hostingextra.it
*.prodotti.hostingextra.it
*.visual.hostingextra.it
nachotoy.online
*.nachotoy.online
*.p.nachotoy.online
*.sitemaps.nachotoy.online
*.comwww.nontongp.com
*.insight.nontongp.com
*.member.nontongp.com
nontongp.com
*.nontongp.com
*.preview.nontongp.com
*.test.nontongp.com
*.wildcard.nontongp.com
*.ww12.nontongp.com
*.ww99.nontongp.com
*.91d7d968-b493-4da1-9030-15ed20c2631c.organicsfrommars.com
*.api.organicsfrommars.com
*.app.organicsfrommars.com
*.c6146faf-c509-4098-be25-02dc974e1d33.organicsfrommars.com
*.demo.organicsfrommars.com
*.dev.organicsfrommars.com
*.hostmaster.organicsfrommars.com
*.new.organicsfrommars.com
*.olx.organicsfrommars.com
organicsfrommars.com
*.organicsfrommars.com
*.rds.organicsfrommars.com
*.rdweb.organicsfrommars.com
*.remote.organicsfrommars.com
*.test.organicsfrommars.com
*.vpn.organicsfrommars.com
*.www.organicsfrommars.com
*.audiobookbay.unblockit.name
*.booksc.unblockit.name
*.bt4g.unblockit.name
*.couchtuner.unblockit.name
*.ettv.unblockit.name
*.glotorrents.unblockit.name
*.newalbumreleases.unblockit.name
*.putlocker.unblockit.name
*.pw.unblockit.name
*.scnsrc.unblockit.name
*.tamilblasters.unblockit.name
*.tfp.unblockit.name
unblockit.name
*.unblockit.name
Other domains in certificate