Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=nachhilfesuchen.de
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 25, 2026
Valid Until
August 23, 2026
58 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
68:34:58:27:B4:71:9C:AC:60:AC:DA:18:30:2F:BD:02:48:8A:E0:58:46:71:85:34:AB:2A:A6:5F:AA:92:DD:36
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
nextup.it
*.nextup.it
*.admin.nextup.it
*.api.nextup.it
*.cassine.nextup.it
*.mx.nextup.it
*.staging.nextup.it
*.1d.2af.live
2af.live
*.2af.live
authorize.bot
*.authorize.bot
*.test.authorize.bot
*.332ba14d-c53a-4993-9d01-c9ac69258e0a.brandxai.tech
*.aging.brandxai.tech
*.api.brandxai.tech
*.app.brandxai.tech
*.b.brandxai.tech
*.backup.brandxai.tech
brandxai.tech
*.brandxai.tech
*.cure.brandxai.tech
*.dashboard.brandxai.tech
*.demo.brandxai.tech
*.dev.brandxai.tech
*.hemvwadmin.brandxai.tech
*.mailer.brandxai.tech
*.marketing.brandxai.tech
*.new.brandxai.tech
*.pignmbackup.brandxai.tech
*.qa.brandxai.tech
*.secure.brandxai.tech
*.staging.brandxai.tech
*.test.brandxai.tech
*.tougyyv2hcg.brandxai.tech
*.uat.brandxai.tech
*.ugyyv2hcg.brandxai.tech
*.v1.brandxai.tech
*.v2.brandxai.tech
*.w.brandxai.tech
*.web.brandxai.tech
*.www.brandxai.tech
*.yv2hcg.brandxai.tech
*.admin.collettivita.com
*.api.collettivita.com
collettivita.com
*.collettivita.com
*.dev.collettivita.com
*.ivowdww42.collettivita.com
*.visual.collettivita.com
*.www.collettivita.com
*.backup.earthmeld.org
*.docs.earthmeld.org
earthmeld.org
*.earthmeld.org
*.sharepoint.earthmeld.org
grief.life
*.grief.life
*.jp.grief.life
*.19f82f92-6b35-4a41-ac9d-c32ed60bd447.lisaparcplis-gerops.com
*.458c5034-009f-47d7-83fc-31cfe5ce5aa7.lisaparcplis-gerops.com
*.api.lisaparcplis-gerops.com
lisaparcplis-gerops.com
*.lisaparcplis-gerops.com
*.m.lisaparcplis-gerops.com
*.0fc0c91e-180e-44a8-8554-f3032f12f99a.mexcrewards.art
*.404fd9d5-c38f-4ad0-be5b-275cdedd491c.mexcrewards.art
*.542643c6-5b07-4e9c-b6d7-c8ca6682ebf3.mexcrewards.art
*.a30421ee-6746-421b-9477-6aa704a1e20c.mexcrewards.art
*.admin.mexcrewards.art
*.api.mexcrewards.art
*.app.mexcrewards.art
*.assets.mexcrewards.art
*.bot.mexcrewards.art
*.dashboard.mexcrewards.art
*.demo.mexcrewards.art
*.dev.mexcrewards.art
*.ead6af53-1836-43d1-844c-099080bafd4c.mexcrewards.art
*.finance.mexcrewards.art
*.login.mexcrewards.art
mexcrewards.art
*.mexcrewards.art
*.panel.mexcrewards.art
*.shop.mexcrewards.art
*.test.mexcrewards.art
*.user.mexcrewards.art
*.ww7.mexcrewards.art
*.zkyphapp.mexcrewards.art
nachhilfesuchen.de
*.nachhilfesuchen.de
Other domains in certificate