Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=kaire.it
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 11, 2026
Valid Until
August 09, 2026
67 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
1E:96:10:34:E2:2C:98:2B:8D:2D:D9:23:F9:10:D5:D2:11:9C:68:18:DB:55:81:2A:AB:4D:80:10:15:0D:DC:BF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
crmpire.com
*.crmpire.com
*.552143d5-744b-46f0-85ff-f5de213729bc.crmpire.com
*.app.crmpire.com
*.cheetahsolar.crmpire.com
*.cloud.crmpire.com
*.essential.crmpire.com
*.mihairdoc.crmpire.com
*.professional.crmpire.com
*.rds.crmpire.com
*.realestate.crmpire.com
*.remote.crmpire.com
*.reply.crmpire.com
*.salinasroofing.crmpire.com
*.shoegroupinc.crmpire.com
*.solarestimate.crmpire.com
*.sopower.crmpire.com
*.test.crmpire.com
*.www.crmpire.com
*.zubre.crmpire.com
*.32.anon.rip
anon.rip
*.anon.rip
*.a85e434e-51d4-46a7-9836-8c4e40593332.cogofearth.ai
*.admin.cogofearth.ai
*.api.cogofearth.ai
cogofearth.ai
*.cogofearth.ai
*.hostmaster.cogofearth.ai
iaisite-eng.org
*.iaisite-eng.org
*.imtidad-blog.iaisite-eng.org
*.ww38.iaisite-eng.org
*.hostmaster.kaire.it
kaire.it
*.kaire.it
*.khapps.kaire.it
*.mail-av.kaire.it
*.rd.kaire.it
*.rdp.kaire.it
*.sama.kaire.it
*.vpn5b.kaire.it
laiva.live
*.laiva.live
*.ww38.laiva.live
*.admin.lior.it
*.bigdata.lior.it
*.chart.lior.it
*.dash.lior.it
*.demo.lior.it
*.dev.lior.it
*.e.lior.it
*.forecast.lior.it
*.hostmaster.lior.it
*.intel.lior.it
*.intelligence.lior.it
lior.it
*.lior.it
*.mail2.lior.it
*.remote.lior.it
*.reports.lior.it
*.research.lior.it
*.staging.lior.it
*.superset.lior.it
*.visual.lior.it
*.oywhjznkmp.shenhuawuliu.cn
shenhuawuliu.cn
*.shenhuawuliu.cn
*.20.tienganhhay.com
*.admin.tienganhhay.com
*.api.tienganhhay.com
*.app.tienganhhay.com
*.backend.tienganhhay.com
*.dev.tienganhhay.com
*.eftfficpftc.tienganhhay.com
*.hostmaster.tienganhhay.com
*.okktvhrgdxh.tienganhhay.com
*.sitemap.tienganhhay.com
*.sitemaps.tienganhhay.com
*.staging.tienganhhay.com
tienganhhay.com
*.tienganhhay.com
*.wildcard.tienganhhay.com
*.ww1.tienganhhay.com
*.ww12.tienganhhay.com
*.ww7.tienganhhay.com
*.free.xifar.cn
*.hth5lmb4d.xifar.cn
xifar.cn
*.xifar.cn
Other domains in certificate