Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=www.eagl.it
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 15, 2026
Valid Until
April 15, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
41:89:97:B1:12:9A:C7:94:44:9E:7C:25:23:D0:BD:EF:17:B3:E5:CE:C2:E7:24:0B:1D:5C:6F:54:57:0B:7F:BA
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
rayan.foundation
abau.info
au.catalyst.adgile.com
stage-web.alfred.fo
s3.vns-central-1.cloud.alledotech.in
anyfiddle.com
api-works.com
cr.baptistedftn.eu
bergerkitzbuehel.at
tmatelinks.bobavoice.com
www.btjt.no
buzzgeeksconsultancy.com
cabanalabartola.uy
admin.careerbridgesolutions.com.au
cascadle.com
test.castlebook.com
ccooctagerte.com
www.ccooctagerte.com
citizenways.com
site.admarket.co.in
www.careermaps.co.in
demo.afec.co.ke
smarthome.codelions.com
info.coinchecker.app
behefa.com.ng
rezerwacje-dev.kuracjusz.com.pl
proeye.com.tr
links.datefit.com
denzozsac.shop
www.diskretmatematik.se
dreamtuner.xyz
dropify.link
www.drparthmali.com
www.eagl.it
ekoputos.lt
l.energygo.es
www.eutax.no
cewe.felixxgroep.nl
www.freshlylite.com
www.greenolive.cl
l.guildfi.com
happygrowing.top
www.himit.su
holisticacuity.com
htala.me
huayok.pro
hxlystick.com
corban.icred.tech
www.jeffmullerdesign.com
manonet.kalyi-jag.hu
kamieniarstwo-grabow.pl
keramosrestoration.co.uk
transparency-auth.lazyteams.com
lo-stratega-anti-copia.it
auth.lshub.net
magdalenasitalia.com
app.managers.app
admin.medihomeweb.de
www.momentumfitness.uy
moxieleavers.co.uk
dev.graphql.naked.insure
action.ngsc.au
links.northscouts.org.uk
nuamic.io
weather.nubgrammer.com
www.obesitycareproviders.com
www.ogi.cz
orbitalno11.me
internal.orderit.ie
aof.org.in
helpingheartsfoundation.org.in
app.insel-mainau.paymytable.com
pizzarianovosabor.com.br
link.playtowingames.net
resource.rabbitcooking.net
admin.rafgui.com
claim.raft.fi
app.rapimoney.pe
www.ready-fare.com
garagesm.recursyve.dev
sanztech.online
schmaybe.io
link.secretimmo.lu
sently.fr
app.sesamonero.com
b2b.spiderbooks.net
zb.strukovnasamobor.hr
techstar.swapnilaher.in
tst.tbltns.app
messages.tcss.io
app.tecnnic.com.br
qr.tgcit.in
the-wing-station.com
thesingarajah.com
merchant-sandbox.touragate.com
www.tristezone.com
turc.today
uown.in
dashboard.velocityps.com.au
www.zkscan.io
Other domains in certificate