Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=fim.it
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 17, 2026
Valid Until
May 18, 2026
88 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9C:69:FC:AD:79:B4:B7:99:26:FE:C2:E3:8C:04:47:20:EC:B8:63:09:09:7E:66:88:CB:03:A2:95:53:62:F3:0E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
mpminideltav2.com
*.mpminideltav2.com
*.cpcalendars.mpminideltav2.com
*.webmail.mpminideltav2.com
*.ww38.mpminideltav2.com
2up2down.com
*.2up2down.com
365max.bet
*.365max.bet
backeasy.it
*.backeasy.it
*.www.backeasy.it
beatbyte.co
*.beatbyte.co
certifieddigitalmarketeracademy.com
*.certifieddigitalmarketeracademy.com
*.ww25.certifieddigitalmarketeracademy.com
fim.it
*.fim.it
*.notexistsmontepiorgio.fim.it
*.pome.fim.it
*.s.fim.it
*.career.flowersbaking.com
flowersbaking.com
*.flowersbaking.com
*.ww1.flowersbaking.com
*.api.forex-broker.international
*.app.forex-broker.international
*.fachhandel.forex-broker.international
forex-broker.international
*.forex-broker.international
*.hostmaster.forex-broker.international
*.webmail.forex-broker.international
insurancetoday.com.au
*.insurancetoday.com.au
kanatasoccer.com
*.kanatasoccer.com
*.vpn3.kanatasoccer.com
khmercitylove.com
*.khmercitylove.com
*.ww25.khmercitylove.com
newskins.com
*.newskins.com
*.random.newskins.com
*.dc-66ff5a6c1932.onlyfansnudes.net
*.leakplanet.onlyfansnudes.net
*.mail.onlyfansnudes.net
onlyfansnudes.net
*.onlyfansnudes.net
*.server1.onlyfansnudes.net
pdfedu.com
*.pdfedu.com
*.ww25.pdfedu.com
*.hostmaster.reioutdoors.com
reioutdoors.com
*.reioutdoors.com
*.remote.reioutdoors.com
*.vpn.reioutdoors.com
*.www.reioutdoors.com
*.alpha.roadsmart.com
*.argo.roadsmart.com
*.att.roadsmart.com
*.blog.roadsmart.com
*.dashboards.roadsmart.com
*.dashs.roadsmart.com
*.hostmaster.roadsmart.com
*.indailwww.roadsmart.com
*.indivisibwww.roadsmart.com
*.notexistsstore.roadsmart.com
*.positiwww.roadsmart.com
*.remote.roadsmart.com
roadsmart.com
*.roadsmart.com
*.sitewww.roadsmart.com
*.stbus.roadsmart.com
*.storagebuwww.roadsmart.com
*.superset.roadsmart.com
*.supersets.roadsmart.com
*.uwww.roadsmart.com
*.v2.roadsmart.com
*.vfemea-admin.roadsmart.com
*.vpn.roadsmart.com
*.workflow.roadsmart.com
*.www.roadsmart.com
*.hostmaster.santorikitchenandbath.net
santorikitchenandbath.net
*.santorikitchenandbath.net
smartkobeportal.com
*.smartkobeportal.com
*.volunteer.smartkobeportal.com
Other domains in certificate