Open
Cached
·
just now
77/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=lorenzoneri.dev
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
March 14, 2026
Valid Until
June 12, 2026
45 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
42:A1:79:C0:27:C9:06:0F:F6:1F:7C:FA:D0:11:70:27:54:B8:D9:77:BE:BF:FB:78:C1:E4:B2:04:AC:30:71:7B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
sprintkit.pro
app.27infinity.in
bridge.abdeen.uk
abhijeetmotiondesign.site
galilea.abr-architects.be
acamalave.com
addiante-simulador-frete.addiante.com.br
www.alteredcommons.com
www.ankarametalcelenk.com.tr
appthink.com.br
arcadenoecj.com.br
backyardtrinkets.com
www.bassoimoveisrs.com.br
bidniz.co.za
blazepoll.in
www.blazepoll.in
boringtwocents.com
ps.c2dinc.ai
claudiocat.cl
www.collectronics.org
conchoconmel.id.vn
crumer.contentcard.com
cunshi.rest
www.cunshi.rest
davidbanu.com
www.designsnack.ch
dev-toolkit.io
www.emarson.ai
developers.staging.enimas.co.jp
status.falkor.io
footballiq.live
gestionlarruzz.es
grkconstruction.in
grs-xpensify.co.uk
hanaholdings.vn
hearnow.ai
holy-smokers.de
www.hubm.cz
inverted-exe.shop
experience.irinoxprofessional.com
itmhelpers.com
itsagundam.online
jabbestembo.com
jintian.buzz
www.jintian.buzz
joajorentcar.com
jobnxt.co.in
joinwell.care
www.joinwell.care
junuhealthcare.com
www.junuhealthcare.com
www.karadenizpide55.com.tr
karenvision.com
kingscreen.kasoft.vn
web-casa.auth.kuberha.ai
test-partner.business.lifebrand.life
lorenzoneri.dev
marklisanti.me
anti-aging.motus-melior.hr
myahsap.com
newlittlesunrise.in
nirveeninterior.com
www.omnigrowthagent.com
on-track.in
oscarponce.com
console.platcel.lol
platcel.lol
www.platcel.lol
plexusneuromechanics.com
haleonapp.pointgroup.biz
primeasia.hair
qabt.in
righturntohealth.org
robiousinnovations.com
samawi.sa
erp.satyarthgurukul.com
www.searchtidy.com
www.shadowstrike.org
skiephone.com
soshelapp.co
adnetwork-canary.spaceeight.net
uatweb1.assessments.teamleaseedtech.com
myacademy.technoamaze.in
papillonpureveg.thediners.in
papillonvegdiningandbar.thediners.in
tiktok.technology
tinytoolsbox.app
www.tinytoolsbox.app
tjbaddy.com
turfup.online
aero.turnosweb.app
uesmuse.shop
up0nline.com
vamubaofn.com
dev.vartabyvikashsahu.com
api-service.wecovr.com
wefree.date
wingplus.buzz
app.wisdom.net.in
withss.xyz
Other domains in certificate