Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=transformeseufisico.online
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 25, 2026
Valid Until
August 23, 2026
66 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CC:93:81:2C:04:31:D9:44:21:94:D0:10:B2:0C:AD:79:53:9C:7E:DC:E4:09:26:53:F2:49:82:D8:45:43:3E:66
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
questdiagnostocs.com
*.questdiagnostocs.com
*.ar.questdiagnostocs.com
*.autodiscover.questdiagnostocs.com
*.flow.questdiagnostocs.com
*.random.questdiagnostocs.com
*.relay.questdiagnostocs.com
*.ww25.questdiagnostocs.com
*.app.damned.it
*.ar.damned.it
*.asp.damned.it
*.astelmail.damned.it
*.bbs.damned.it
*.citrixcloud.damned.it
damned.it
*.damned.it
*.dash.damned.it
*.email.damned.it
*.est-vpn.damned.it
*.exchange.damned.it
*.go.damned.it
*.heip.damned.it
*.helpdesk.damned.it
*.hostmaster.damned.it
*.i.damned.it
*.identity.damned.it
*.mail.damned.it
*.man.damned.it
*.metrics.damned.it
*.nvdi.damned.it
*.owa.damned.it
*.portal.damned.it
*.preview.damned.it
*.pro.damned.it
*.reports.damned.it
*.stats.damned.it
*.superset.damned.it
*.visual.damned.it
*.vpnma.damned.it
*.wwww.damned.it
*.xd.damned.it
transformeseufisico.online
*.transformeseufisico.online
*.mx.visuart.co
visuart.co
*.visuart.co
*.ftp.webroot-webroot.com
*.pop.webroot-webroot.com
*.smtp.webroot-webroot.com
*.webmail.webroot-webroot.com
webroot-webroot.com
*.webroot-webroot.com
*.www.webroot-webroot.com
*.acceso.xforums.com
*.access.xforums.com
*.adfs.xforums.com
*.adfs1.xforums.com
*.adfs2.xforums.com
*.adfstest.xforums.com
*.admin.xforums.com
*.app01.xforums.com
*.apps1.xforums.com
*.appserver.xforums.com
*.ast.xforums.com
*.cr.xforums.com
*.desktop.xforums.com
*.desktop2.xforums.com
*.facebook.xforums.com
*.gw-001.xforums.com
*.hostmaster.xforums.com
*.i.xforums.com
*.intranet.xforums.com
*.ma.xforums.com
*.mail.xforums.com
*.my.xforums.com
*.owa.xforums.com
*.penta.xforums.com
*.ra.xforums.com
*.rdcb.xforums.com
*.rdm.xforums.com
*.rdsdemo.xforums.com
*.remote1.xforums.com
*.tclock.xforums.com
*.tl.xforums.com
*.ts1.xforums.com
*.wdc.xforums.com
*.webaccess.xforums.com
*.xero.xforums.com
xforums.com
*.xforums.com
Other domains in certificate