Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=furman.it
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 17, 2026
Valid Until
August 15, 2026
88 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
95:FA:1F:C2:00:5C:31:B4:F1:47:E3:B8:81:64:84:04:BE:7C:27:E4:7F:9B:91:9E:2E:D1:67:D9:F1:FA:86:ED
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
societyvr.com
*.societyvr.com
*.hostmaster.societyvr.com
*.m.societyvr.com
*.wiki.societyvr.com
*.www.societyvr.com
*.admin.furman.it
*.app.furman.it
*.backend.furman.it
furman.it
*.furman.it
*.staging.furman.it
giftsofnature.store
*.giftsofnature.store
*.2www.immortalchess.net
*.aaa.immortalchess.net
*.en.immortalchess.net
immortalchess.net
*.immortalchess.net
*.mobile.immortalchess.net
*.mx.immortalchess.net
*.playzone.immortalchess.net
*.pozitiffchess223.immortalchess.net
*.ssl.immortalchess.net
*.w.immortalchess.net
*.ww12.immortalchess.net
*.ww99.immortalchess.net
*.www.immortalchess.net
*.actds.kstroman.com
*.alnq.kstroman.com
*.ccole.kstroman.com
*.comfiir.kstroman.com
*.fiqb.kstroman.com
*.gzskc.kstroman.com
*.jygjt.kstroman.com
kstroman.com
*.kstroman.com
*.mjro.kstroman.com
*.njnkwr.kstroman.com
*.oruteq.kstroman.com
*.ouldzc.kstroman.com
*.qgqoq.kstroman.com
*.tkrv.kstroman.com
*.tytm.kstroman.com
*.5vs9r.mp4zen.top
*.enr3p.mp4zen.top
*.g22y8.mp4zen.top
mp4zen.top
*.mp4zen.top
*.nxc75.mp4zen.top
*.qdiek.mp4zen.top
*.qk6fu.mp4zen.top
*.s5kjz.mp4zen.top
*.sbd1u.mp4zen.top
*.tpxa3.mp4zen.top
*.uw9i.mp4zen.top
*.v3ywp.mp4zen.top
*.y6iui.mp4zen.top
nusantara4dneko.cfd
*.nusantara4dneko.cfd
*.sitemaps.nusantara4dneko.cfd
*.beta-insight.trendmatrixmarke.com
*.ci-staging.trendmatrixmarke.com
*.ci.trendmatrixmarke.com
*.dev-bi.trendmatrixmarke.com
*.gitlab.trendmatrixmarke.com
*.hotfix-ci.trendmatrixmarke.com
*.insight.trendmatrixmarke.com
*.integration.trendmatrixmarke.com
*.jenkins.trendmatrixmarke.com
*.mail.trendmatrixmarke.com
*.pipeline-alpha.trendmatrixmarke.com
*.pipeline.trendmatrixmarke.com
*.poc.trendmatrixmarke.com
*.random.trendmatrixmarke.com
*.sandbox-insight.trendmatrixmarke.com
*.sitemap.trendmatrixmarke.com
*.sitemaps.trendmatrixmarke.com
trendmatrixmarke.com
*.trendmatrixmarke.com
*.ww12.trendmatrixmarke.com
*.ww99.trendmatrixmarke.com
*.www.trendmatrixmarke.com
*.2b135d9330.yarnspinner.top
*.5918a80761.yarnspinner.top
*.88b1d278fb.yarnspinner.top
*.90f026a382.yarnspinner.top
*.d027f53d6c.yarnspinner.top
yarnspinner.top
*.yarnspinner.top
Other domains in certificate