Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=covermodel.it
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 23, 2026
Valid Until
August 21, 2026
68 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
75:5C:E6:0B:1C:5C:FB:6B:E8:23:2A:83:AA:6C:74:74:1A:41:0A:B2:91:AA:6D:EB:6F:B9:13:46:63:34:75:2C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
oceanviewsrealty.com
*.oceanviewsrealty.com
*.app.oceanviewsrealty.com
*.avito.oceanviewsrealty.com
*.fachhandel.oceanviewsrealty.com
*.m.oceanviewsrealty.com
*.rbrouavito.oceanviewsrealty.com
703384.my
*.703384.my
*.dev.703384.my
*.1487.b14875003.com
b14875003.com
*.b14875003.com
*.airflow.bitcoincryptobond.com
*.app.bitcoincryptobond.com
bitcoincryptobond.com
*.bitcoincryptobond.com
*.hostmaster.bitcoincryptobond.com
*.portal.bitcoincryptobond.com
*.store.bitcoincryptobond.com
*.admin.covermodel.it
*.api.covermodel.it
*.app.covermodel.it
*.backend.covermodel.it
covermodel.it
*.covermodel.it
*.dashboard.covermodel.it
*.demo.covermodel.it
*.dev.covermodel.it
*.flowise.covermodel.it
*.hostmaster.covermodel.it
*.mx.covermodel.it
*.notexistsapi.covermodel.it
*.notexistsapp.covermodel.it
*.notexistsdev.covermodel.it
*.notexistsstaging.covermodel.it
*.reports.covermodel.it
*.staging.covermodel.it
*.visual.covermodel.it
*.webmail.covermodel.it
*.www.covermodel.it
delhisalestax.com
*.delhisalestax.com
*.kino.delhisalestax.com
*.stage.delhisalestax.com
*.superset.delhisalestax.com
*.ww17.delhisalestax.com
*.api.homegallery.it
homegallery.it
*.homegallery.it
*.dev.linevoomtw-wenjuanwc.cfd
linevoomtw-wenjuanwc.cfd
*.linevoomtw-wenjuanwc.cfd
*.32.mattoffroadrecovery.com
mattoffroadrecovery.com
*.mattoffroadrecovery.com
*.prod.mattoffroadrecovery.com
*.ww25.mattoffroadrecovery.com
*.4qwa0.miami9097.xyz
*.bnbod.miami9097.xyz
*.caqkijxc88.miami9097.xyz
*.d.miami9097.xyz
*.he00g.miami9097.xyz
*.mailer.miami9097.xyz
miami9097.xyz
*.miami9097.xyz
*.svzzq.miami9097.xyz
nowmesports.com
*.nowmesports.com
*.da81a0e9-a85f-4989-b5c9-5faa5158f7e9.passport.autos
passport.autos
*.passport.autos
*.friday022.qiniuyun15.xyz
*.friday20.qiniuyun15.xyz
*.monday172.qiniuyun15.xyz
qiniuyun15.xyz
*.qiniuyun15.xyz
*.saturday.qiniuyun15.xyz
*.saturday10.qiniuyun15.xyz
*.saturday27.qiniuyun15.xyz
*.sunday012.qiniuyun15.xyz
*.sunday16.qiniuyun15.xyz
*.tuesday.qiniuyun15.xyz
*.tuesday03.qiniuyun15.xyz
*.tuesday11.qiniuyun15.xyz
*.m.veganmealkit.com
*.remote.veganmealkit.com
veganmealkit.com
*.veganmealkit.com
*.www.veganmealkit.com
Other domains in certificate