Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=yafa.it
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
March 20, 2026
Valid Until
June 18, 2026
33 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
78:00:32:59:22:FF:E7:99:9D:65:53:57:7B:F6:93:D5:14:92:1A:CA:FD:E3:F1:E8:8B:81:10:4A:52:14:B1:3C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
dirigio.it
*.dirigio.it
*.admin.dirigio.it
*.gw1.dirigio.it
*.report.dirigio.it
239877.com
*.239877.com
*.web-sitemap.239877.com
hausdurchsuchung.com
*.hausdurchsuchung.com
*.mail.hausdurchsuchung.com
*.detran-de-sp-consulta-multas.innovira.online
innovira.online
*.innovira.online
*.motorola-flip-phones-old.innovira.online
*.repair-kl15e-kirby-lester.innovira.online
*.scp-1471-x-male-reader.innovira.online
*.35837ccf-f8e4-48aa-a45a-a58969ca5cc2.motoringcars.com
*.47557714-3522-46d0-ac9d-563bc574b5a0.motoringcars.com
*.834fc198-8254-455b-bb46-883cc4a80c73.motoringcars.com
*.9835134e-6d63-41da-85f9-faf4c6d67597.motoringcars.com
*.a.motoringcars.com
*.ad.motoringcars.com
*.adblock.motoringcars.com
*.adg.motoringcars.com
*.adguard.motoringcars.com
*.adguard1.motoringcars.com
*.admin.motoringcars.com
*.agh.motoringcars.com
*.api.motoringcars.com
*.app.motoringcars.com
*.assets.motoringcars.com
*.b2e4b701-d8c9-4bad-836e-869d6349ac41.motoringcars.com
*.crm.motoringcars.com
*.dns.motoringcars.com
*.dns1.motoringcars.com
*.doh.motoringcars.com
*.doh1.motoringcars.com
*.ftp.motoringcars.com
*.help.motoringcars.com
*.ildcard.motoringcars.com
*.intranet.motoringcars.com
*.m.motoringcars.com
*.money.motoringcars.com
motoringcars.com
*.motoringcars.com
*.portal.motoringcars.com
*.public.motoringcars.com
*.rd.motoringcars.com
*.rds.motoringcars.com
*.rdweb.motoringcars.com
*.remote.motoringcars.com
*.resolver.motoringcars.com
*.resolver1.motoringcars.com
*.shop.motoringcars.com
*.sitemaps.motoringcars.com
*.store.motoringcars.com
*.test.motoringcars.com
*.transactions.motoringcars.com
*.vpn.motoringcars.com
*.web.motoringcars.com
*.wildcard.motoringcars.com
*.www.motoringcars.com
*.dev.rawen.cc
*.insight.rawen.cc
*.preprod.rawen.cc
*.random.rawen.cc
rawen.cc
*.rawen.cc
*.wildcard.rawen.cc
*.ww2.rawen.cc
*.ww25.rawen.cc
*.fb.setinstones.com
*.fun.setinstones.com
*.hostmaster.setinstones.com
*.sandbox.setinstones.com
setinstones.com
*.setinstones.com
*.store.setinstones.com
*.test.setinstones.com
*.users.setinstones.com
*.webmail.setinstones.com
*.whois.setinstones.com
*.ww.setinstones.com
*.ww16.setinstones.com
*.ww25.setinstones.com
*.ww38.setinstones.com
*.hostmaster.yafa.it
yafa.it
*.yafa.it
Other domains in certificate