Open
Cached
·
1h ago
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=lostlands.it
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 14, 2026
Valid Until
July 13, 2026
60 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7F:52:4B:5E:AE:B7:5D:83:1F:FB:AA:2C:24:C6:32:3C:3B:60:7A:A1:19:4E:47:A5:66:7B:64:7E:5C:29:05:46
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
88 domains
lostlands.it
*.lostlands.it
*.bi.lostlands.it
*.metrics.lostlands.it
*.mx.lostlands.it
*.owa.lostlands.it
*.rdweb.lostlands.it
*.remote.lostlands.it
*.report.lostlands.it
*.reporting.lostlands.it
*.app.gioielli.one
*.backend.gioielli.one
*.dd51a3e2-7d3d-4aa8-8ba9-7c27d24a7541.gioielli.one
gioielli.one
*.gioielli.one
*.m.gioielli.one
*.materiais.gioielli.one
*.mta-sts.gioielli.one
*.n9e.gioielli.one
*.rds.gioielli.one
*.sitemaps.gioielli.one
*.www.gioielli.one
i420quebec.com
*.i420quebec.com
*.rdweb.i420quebec.com
*.remote.i420quebec.com
*.test.i420quebec.com
*.vpn.i420quebec.com
*.0u12d.soc99sport.xyz
*.1d817.soc99sport.xyz
*.2194l.soc99sport.xyz
*.39ir6.soc99sport.xyz
*.3ugcn.soc99sport.xyz
*.4yj7f.soc99sport.xyz
*.5vs9r.soc99sport.xyz
*.6687200e-5097-45f3-861a-aed1da98c950.soc99sport.xyz
*.6s98n.soc99sport.xyz
*.8hy5t.soc99sport.xyz
*.8joac.soc99sport.xyz
*.ahaiaanalyze.soc99sport.xyz
*.analyze.soc99sport.xyz
*.api.soc99sport.xyz
*.app.soc99sport.xyz
*.aqzmk.soc99sport.xyz
*.ayfpk.soc99sport.xyz
*.bd8b5435-7ef1-452b-ae3e-73c5e8d3ba24.soc99sport.xyz
*.c6udy.soc99sport.xyz
*.cg4o5.soc99sport.xyz
*.d.soc99sport.xyz
*.demo.soc99sport.xyz
*.dev.soc99sport.xyz
*.dwij7.soc99sport.xyz
*.eu3rm.soc99sport.xyz
*.fdy0p.soc99sport.xyz
*.g22y8.soc99sport.xyz
*.gjdvb.soc99sport.xyz
*.hscbgbuodmqemxhv3ywp.soc99sport.xyz
*.internal.soc99sport.xyz
*.iovou.soc99sport.xyz
*.jyikv.soc99sport.xyz
*.l2aa8.soc99sport.xyz
*.l7nqb.soc99sport.xyz
*.lcjev.soc99sport.xyz
*.lkzdx.soc99sport.xyz
*.members.soc99sport.xyz
*.nemln.soc99sport.xyz
*.niw2v.soc99sport.xyz
*.nktjv.soc99sport.xyz
*.nslow.soc99sport.xyz
*.o7p4x.soc99sport.xyz
*.pp4gk.soc99sport.xyz
*.q2s8t.soc99sport.xyz
*.qakt3.soc99sport.xyz
*.qdiek.soc99sport.xyz
*.qpuov.soc99sport.xyz
*.rdupruugt9.soc99sport.xyz
*.rnyzj.soc99sport.xyz
soc99sport.xyz
*.soc99sport.xyz
*.staging.soc99sport.xyz
*.tjkhwlcjev.soc99sport.xyz
*.tpxa3.soc99sport.xyz
*.uugt9.soc99sport.xyz
*.wsct4.soc99sport.xyz
*.xlfxstfyjviovou.soc99sport.xyz
*.xrqcg.soc99sport.xyz
*.xzjfwv6j6e.soc99sport.xyz
*.z4r76.soc99sport.xyz
Other domains in certificate