Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=abf.it
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 04, 2026
Valid Until
July 03, 2026
41 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
50:E9:ED:AA:18:B8:3F:32:6B:CC:30:61:FE:46:79:B9:7D:82:AA:A5:B1:11:04:17:0C:FA:14:F5:71:3F:91:22
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
88 domains
b2bplatform.it
*.b2bplatform.it
3jyajza5cy.com
*.3jyajza5cy.com
*.lwesoes.3jyajza5cy.com
abf.it
*.abf.it
abundancetravel.com
*.abundancetravel.com
affaridistato.it
*.affaridistato.it
annoying.it
*.annoying.it
anom.it
*.anom.it
autopecaroma.com
*.autopecaroma.com
bodysizes.it
*.bodysizes.it
bossaquaticsstore.com
*.bossaquaticsstore.com
*.ww25.bossaquaticsstore.com
*.ask.bu3m0b.com
bu3m0b.com
*.bu3m0b.com
*.dbs.bu3m0b.com
*.hostmaster.bu3m0b.com
*.smartapi.bu3m0b.com
*.www.bu3m0b.com
dalpoom.com
*.dalpoom.com
*.random.dalpoom.com
elodisparis.com
*.elodisparis.com
gatasgold.com
*.gatasgold.com
*.jenkins.gatasgold.com
gransanbernardo.com
*.gransanbernardo.com
*.ww42.gransanbernardo.com
gyrosfix.com.au
*.gyrosfix.com.au
*.orderonline.gyrosfix.com.au
harmonix.studio
*.harmonix.studio
*.ww25.harmonix.studio
*.ww38.harmonix.studio
historylights4.xyz
*.historylights4.xyz
jcv.au
*.jcv.au
newgenerationphone.com
*.newgenerationphone.com
*.d.nowgame3.xyz
nowgame3.xyz
*.nowgame3.xyz
oosc.online
*.oosc.online
pegasustower.space
*.pegasustower.space
peterj.store
*.peterj.store
samurai188-asli.online
*.samurai188-asli.online
scuolacalcioitalia.com
*.scuolacalcioitalia.com
solaritermici.com
*.solaritermici.com
*.soucc.southern.cc
southern.cc
*.southern.cc
storeforyou.co
*.storeforyou.co
*.be.synixis.com
*.controlcenter-p2.synixis.com
*.origin.synixis.com
synixis.com
*.synixis.com
vacationland.studio
*.vacationland.studio
vertale.nu
*.vertale.nu
*.ww11.vertale.nu
*.ww16.vertale.nu
*.ww25.vertale.nu
*.ww38.vertale.nu
vincidavvero.com
*.vincidavvero.com
Other domains in certificate