Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=ministry.it
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 12, 2026
Valid Until
July 11, 2026
58 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5F:82:A9:87:A0:2F:1B:59:76:45:56:AC:BD:36:DA:EB:02:1E:65:B5:FB:2A:BD:4A:C4:00:2A:5A:F6:D9:A2:87
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
entloans.app
*.entloans.app
*.assets.entloans.app
*.brcirdemo.entloans.app
*.cpanel.entloans.app
*.crm.entloans.app
*.forum.entloans.app
*.hostmaster.entloans.app
*.intranet.entloans.app
*.kdbrogo.entloans.app
*.mailer.entloans.app
*.mqycpcrm.entloans.app
*.pay.entloans.app
*.site.entloans.app
*.smtp2.entloans.app
*.test.entloans.app
*.ww38.entloans.app
*.zbsujww38.entloans.app
*.2961ffe4-04d1-452b-aa2b-59035f3c65ca.4b4xqjx.com
4b4xqjx.com
*.4b4xqjx.com
*.86856a44-cb23-4de7-9c44-e8a90133350f.4b4xqjx.com
*.admin.4b4xqjx.com
*.api.4b4xqjx.com
*.app.4b4xqjx.com
*.assets.4b4xqjx.com
*.backend.4b4xqjx.com
*.cloud.4b4xqjx.com
*.demo.4b4xqjx.com
*.dev.4b4xqjx.com
*.hostmaster.4b4xqjx.com
*.new.4b4xqjx.com
*.rd.4b4xqjx.com
*.rds.4b4xqjx.com
*.rdweb.4b4xqjx.com
*.remote.4b4xqjx.com
*.rustore.4b4xqjx.com
*.sharepoint.4b4xqjx.com
*.shop.4b4xqjx.com
*.sistema.4b4xqjx.com
*.staging.4b4xqjx.com
*.test.4b4xqjx.com
brandingdomain.com
*.brandingdomain.com
*.cp.brandingdomain.com
*.api.carpasal.com
carpasal.com
*.carpasal.com
*.d02ea689-444c-48ed-b606-44371a85d4a9.carpasal.com
*.vpn.carpasal.com
*.app.hubbodonto.com
*.autodiscover.hubbodonto.com
hubbodonto.com
*.hubbodonto.com
*.mx20.hubbodonto.com
*.rdweb.hubbodonto.com
*.remote.hubbodonto.com
*.store.hubbodonto.com
ministry.it
*.ministry.it
*.campanha.techsolventures.info
techsolventures.info
*.techsolventures.info
*.023344de-d6ae-4c81-b214-d89d29f01d81.vip789betb.link
*.3103a4b3-e908-44a0-a96d-8544e2ada613.vip789betb.link
*.8ab667d8-63d9-4edf-9cb5-6ac2df52a5b6.vip789betb.link
*.admin.vip789betb.link
*.agijpminfrv2.vip789betb.link
*.api.vip789betb.link
*.app.vip789betb.link
*.assets.vip789betb.link
*.backup.vip789betb.link
*.dashboard.vip789betb.link
*.dev.vip789betb.link
*.hostmaster.vip789betb.link
*.mail.vip789betb.link
*.marketing.vip789betb.link
*.minfrv2.vip789betb.link
*.qa.vip789betb.link
*.rustore.vip789betb.link
*.secure.vip789betb.link
*.staging.vip789betb.link
*.stg.vip789betb.link
*.test.vip789betb.link
*.uat.vip789betb.link
*.v1.vip789betb.link
*.v2.vip789betb.link
vip789betb.link
*.vip789betb.link
*.xyrkptfmhcmarketing.vip789betb.link
Other domains in certificate