Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=rechichi.it
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 14, 2026
Valid Until
May 15, 2026
89 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
6B:41:D6:9D:CB:29:F3:01:53:B6:42:DC:EB:7E:8B:FF:C3:80:1A:33:9B:19:90:CC:C5:85:63:76:96:26:C3:CB
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
abood.com
*.abood.com
*.access.abood.com
*.admin.abood.com
*.cloud.abood.com
*.dev.abood.com
*.exchange.abood.com
*.fortivpn.abood.com
*.lolwww.abood.com
*.remoteaccess.abood.com
*.web.abood.com
*.ww11.abood.com
*.ww38.abood.com
*.x.abood.com
315mmf.cc
*.315mmf.cc
*.p1caj.315mmf.cc
*.u1kf6r.315mmf.cc
730.pink
*.730.pink
*.85.730.pink
*.ad.730.pink
*.adblock.730.pink
*.api.730.pink
*.app.730.pink
*.backup.730.pink
*.dev.730.pink
*.doh1.730.pink
*.eahlzshare.730.pink
*.external.730.pink
*.hr.730.pink
*.marketing.730.pink
*.ns.730.pink
*.portal.730.pink
*.resolver.730.pink
*.share.730.pink
*.sharepoint.730.pink
*.staging.730.pink
*.stg.730.pink
*.uat.730.pink
*.v1.730.pink
kimpaim.com.br
*.kimpaim.com.br
*.ns1.kimpaim.com.br
*.ns2.kimpaim.com.br
*.ns3.kimpaim.com.br
*.ww25.kimpaim.com.br
logox.net
*.logox.net
*.rojob.logox.net
*.dev.mitra77resmi.com
mitra77resmi.com
*.mitra77resmi.com
*.backend.rechichi.it
*.demo.rechichi.it
rechichi.it
*.rechichi.it
*.superset.rechichi.it
*.staging.xn--unswap-c9a.org
xn--unswap-c9a.org
*.xn--unswap-c9a.org
*.90a7bcc9-bcf1-48b0-bb56-06962bd1e2e5.xrypt.ing
*.admin.xrypt.ing
*.api.xrypt.ing
*.app.xrypt.ing
*.backup.xrypt.ing
*.dashboard.xrypt.ing
*.demo.xrypt.ing
*.docs.xrypt.ing
*.gcudxevm.xrypt.ing
*.hostmaster.xrypt.ing
*.hylfmqa.xrypt.ing
*.ilynsdashboard.xrypt.ing
*.intranet.xrypt.ing
*.mail.xrypt.ing
*.mailer.xrypt.ing
*.portal.xrypt.ing
*.public.xrypt.ing
*.qa.xrypt.ing
*.secure.xrypt.ing
*.sharepoint.xrypt.ing
*.staging.xrypt.ing
*.stat.xrypt.ing
*.test.xrypt.ing
*.testing.xrypt.ing
*.uat.xrypt.ing
*.v2.xrypt.ing
*.web.xrypt.ing
xrypt.ing
*.xrypt.ing
Other domains in certificate