DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=nightdream.it
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 18, 2026
Valid Until
May 19, 2026 88 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
13:C0:C1:C2:62:CF:46:44:4A:AC:A3:01:59:F3:76:B3:2C:D3:D2:AA:A0:22:BD:20:B3:CE:21:48:82:01:41:8F
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
passportplease.it *.passportplease.it

Other domains in certificate

*.2.duolinngo.com duolinngo.com *.duolinngo.com *.hostmaster.duolinngo.com
*.16.gaigu.us gaigu.us *.gaigu.us
goldpots.com *.goldpots.com
*.cpanel.musicukraine.com *.mail.musicukraine.com musicukraine.com *.musicukraine.com *.random.musicukraine.com *.server.musicukraine.com *.web.musicukraine.com *.webdisk.musicukraine.com *.webmail.musicukraine.com *.www.musicukraine.com
naarpr.com *.naarpr.com *.random.naarpr.com
nightdream.it *.nightdream.it
nonimporta.it *.nonimporta.it
nsnxf.pro *.nsnxf.pro
*.auth.nudepaintings.com *.beta.nudepaintings.com nudepaintings.com *.nudepaintings.com
oneys7.one *.oneys7.one
onlyhits.it *.onlyhits.it
overblue.it *.overblue.it
panchovilla.it *.panchovilla.it
pasar.it *.pasar.it
payy.cc *.payy.cc
pdyai.cc *.pdyai.cc
peeping.it *.peeping.it
perfectskins.it *.perfectskins.it
pgwst.cc *.pgwst.cc
pixelnex.info *.pixelnex.info
popolosovrano.it *.popolosovrano.it
prereg.it *.prereg.it
pricechecks.it *.pricechecks.it
prizren.it *.prizren.it
productiv.it *.productiv.it
profitmanagement.it *.profitmanagement.it
prosuccess.site *.prosuccess.site
pumpkinmaster.com *.pumpkinmaster.com *.random.pumpkinmaster.com
*.alice.unitunimelb.org *.go.unitunimelb.org *.link.unitunimelb.org *.meet.unitunimelb.org *.random.unitunimelb.org unitunimelb.org *.unitunimelb.org
way2goprogram.com *.way2goprogram.com
*.admin.wyre.it *.adminer.wyre.it *.spring.wyre.it wyre.it *.wyre.it
*.2yc40.your-healthy-plan.online your-healthy-plan.online *.your-healthy-plan.online