Open
Cached
·
1h ago
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=klyb-wylcan.info
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 22, 2026
Valid Until
August 20, 2026
54 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D4:6B:35:F2:36:37:E8:93:92:DA:A5:36:51:A6:72:CE:97:72:4E:B3:26:F8:4B:5E:DE:29:C4:CB:6A:FF:C9:FB
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
assicurate.com
*.assicurate.com
*.corna.assicurate.com
*.hostmaster.assicurate.com
*.mail.assicurate.com
*.remote.assicurate.com
*.secure.assicurate.com
adele.it
*.adele.it
*.ajqzlrdweb.adele.it
*.anyconnect.adele.it
*.api.adele.it
*.ar.adele.it
*.citrixcloud.adele.it
*.dashboard.adele.it
*.i.adele.it
*.identity.adele.it
*.khapps.adele.it
*.liv.adele.it
*.login.adele.it
*.mail.adele.it
*.mymail.adele.it
*.mywebmail.adele.it
*.rds03.adele.it
*.superset.adele.it
*.wein.adele.it
aroundaustralia.au
*.aroundaustralia.au
bounded.cloud
*.bounded.cloud
*.hostmaster.bounded.cloud
*.wildcard.bounded.cloud
*.ww25.bounded.cloud
crowdinvesting.au
*.crowdinvesting.au
duskiiactive.com
*.duskiiactive.com
flava.au
*.flava.au
friendsgram.it
*.friendsgram.it
*.hostmaster.friendsgram.it
gafps-eports.net
*.gafps-eports.net
harborinnseafoodburlington.com
*.harborinnseafoodburlington.com
*.access.idrica.it
*.anyconnect.idrica.it
*.apps.idrica.it
*.asp.idrica.it
*.astelmail.idrica.it
*.awvpn.idrica.it
*.citrixcloud.idrica.it
*.desktop.idrica.it
*.emv1.idrica.it
*.helpdesk.idrica.it
idrica.it
*.idrica.it
*.rd.idrica.it
*.vpngate.idrica.it
*.vpnpa.idrica.it
*.vpntoj.idrica.it
*.vpntoronto.idrica.it
*.webmail.idrica.it
*.www.idrica.it
*.hhs.klyb-wylcan.info
klyb-wylcan.info
*.klyb-wylcan.info
*.api.rinviata.com
*.backend.rinviata.com
*.bi.rinviata.com
*.reporting.rinviata.com
rinviata.com
*.rinviata.com
*.arise.rrgallery.net
*.chase.rrgallery.net
*.dbs.rrgallery.net
*.entest.rrgallery.net
*.excserver.rrgallery.net
*.mascot.rrgallery.net
*.navy.rrgallery.net
*.panasonic.rrgallery.net
rrgallery.net
*.rrgallery.net
*.xmac.rrgallery.net
*.yabooks.rrgallery.net
*.zhidao.rrgallery.net
szabodaniel.com
*.szabodaniel.com
Other domains in certificate