Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=brid.it
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 26, 2026
Valid Until
July 25, 2026
72 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
2F:26:33:22:65:2B:1F:16:D0:BF:32:0C:AD:AE:47:2E:A8:26:64:D1:DE:94:FF:A2:7B:BC:DC:34:78:B9:56:5D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
max.org
*.max.org
*.cpanel.max.org
*.mail.max.org
*.ww11.max.org
arabxny67uik.xyz
*.arabxny67uik.xyz
*.ww25.arabxny67uik.xyz
*.ww38.arabxny67uik.xyz
*.www.arabxny67uik.xyz
bioenergypro.com
*.bioenergypro.com
*.www.bioenergypro.com
brid.it
*.brid.it
camdetector.it
*.camdetector.it
capille.it
*.capille.it
castex.it
*.castex.it
conferencias.it
*.conferencias.it
fjx68qp.cn
*.fjx68qp.cn
*.test.fjx68qp.cn
*.comune.fp26ua9.info
fp26ua9.info
*.fp26ua9.info
*.ww25.fp26ua9.info
goodbits.co
*.goodbits.co
guysinsweatpantscams.com
*.guysinsweatpantscams.com
hexfin.com
*.hexfin.com
*.ww25.hexfin.com
insurancecarrier.biz
*.insurancecarrier.biz
kualalumpurhotels.it
*.kualalumpurhotels.it
maravilla.it
*.maravilla.it
mascherare.it
*.mascherare.it
mutant.live
*.mutant.live
*.random.mutant.live
*.emb2.publichotsex.com
*.emb4.publichotsex.com
publichotsex.com
*.publichotsex.com
*.ww38.publichotsex.com
*.www.publichotsex.com
rebekahjinkerson.click
*.rebekahjinkerson.click
*.mail.roboject.com
roboject.com
*.roboject.com
rosander.eu
*.rosander.eu
secretoutlet.fr
*.secretoutlet.fr
*.c6udy.stayscout.top
*.nktjv.stayscout.top
stayscout.top
*.stayscout.top
*.wakkl.stayscout.top
telegramjoingroups.com
*.telegramjoingroups.com
toonthe45.xyz
*.toonthe45.xyz
*.ww38.toonthe45.xyz
*.co.ulc.com.au
ulc.com.au
*.ulc.com.au
*.ww16.ulc.com.au
*.3dimages.websitehai.com
*.cardingpk.websitehai.com
*.chaudhary.websitehai.com
*.hkmobileandaccessories.websitehai.com
*.jewelsyard.websitehai.com
*.jobs.websitehai.com
websitehai.com
*.websitehai.com
*.wms.websitehai.com
*.ww38.websitehai.com
woefullpose.co.uk
*.woefullpose.co.uk
Other domains in certificate