Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=lovebear.it
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 23, 2026
Valid Until
August 21, 2026
68 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E5:17:D9:48:F4:BA:CE:84:52:3C:35:40:D2:89:C0:F8:15:C6:AF:61:FB:16:56:B8:4F:9F:FC:C4:78:46:C0:43
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
megatools.co
*.megatools.co
*.sitemaps.megatools.co
320ytmp3.cc
*.320ytmp3.cc
*.ww25.320ytmp3.cc
75572.bet
*.75572.bet
bbcnews.click
*.bbcnews.click
*.w.bbcnews.click
*.ww25.bbcnews.click
bellocci.it
*.bellocci.it
*.correu.bellocci.it
*.random.bellocci.it
*.remote.bellocci.it
*.admin.dibantumbah8.click
dibantumbah8.click
*.dibantumbah8.click
*.app.exploreroutes.org
*.backup.exploreroutes.org
exploreroutes.org
*.exploreroutes.org
*.members.exploreroutes.org
*.staging.exploreroutes.org
*.testing.exploreroutes.org
*.uat.exploreroutes.org
*.32.flicckr.com
*.3a2c6f76-6e05-4b5c-abee-dd23c5c78bdb.flicckr.com
*.account.flicckr.com
*.admin.flicckr.com
*.cb0ecb44-cc73-4993-bf74-dee290e2176f.flicckr.com
*.crm.flicckr.com
flicckr.com
*.flicckr.com
*.jobs.flicckr.com
*.m.flicckr.com
*.magento.flicckr.com
*.members.flicckr.com
*.old.flicckr.com
*.staging.flicckr.com
*.uat.flicckr.com
*.ww3.flicckr.com
*.ww38.flicckr.com
gen.com.au
*.gen.com.au
*.netmaker.gen.com.au
*.notebooktamiri.gen.com.au
*.rtl.gen.com.au
*.ww25.gen.com.au
*.baidu.hds-streaming-vf.site
*.bip.hds-streaming-vf.site
*.docs.hds-streaming-vf.site
hds-streaming-vf.site
*.hds-streaming-vf.site
*.m.hds-streaming-vf.site
*.mail.hds-streaming-vf.site
*.media.hds-streaming-vf.site
*.myhome.hds-streaming-vf.site
*.rdpress.hds-streaming-vf.site
*.static.hds-streaming-vf.site
*.store.hds-streaming-vf.site
*.testing.hds-streaming-vf.site
*.www7b.hds-streaming-vf.site
lmn39.sbs
*.lmn39.sbs
*.ww38.lmn39.sbs
*.2024.lovebear.it
lovebear.it
*.lovebear.it
*.mta.omeganove.it
omeganove.it
*.omeganove.it
pedantic.au
*.pedantic.au
*.ww25.pedantic.au
*.analytic.servicecar.it
*.remote.servicecar.it
servicecar.it
*.servicecar.it
*.staging.servicecar.it
*.uat.servicecar.it
*.www.servicecar.it
*.cpcontacts.spinrise-casino.tech
spinrise-casino.tech
*.spinrise-casino.tech
timeboard.com.au
*.timeboard.com.au
*.ww16.timeboard.com.au
Other domains in certificate