Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=stellen.it
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
June 26, 2026
Valid Until
September 24, 2026
89 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
16:6E:5E:0E:A9:35:AA:19:CA:17:01:64:89:30:22:10:C1:E4:8E:24:A8:2A:42:B8:90:EA:DD:53:12:FB:BF:2E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
stellen.it
*.stellen.it
81nft.com
*.81nft.com
*.blog.81nft.com
*.demo.81nft.com
*.dev.81nft.com
*.6jzpmt.ashtreefarmreedness.online
*.adm.ashtreefarmreedness.online
*.admin.ashtreefarmreedness.online
*.aging.ashtreefarmreedness.online
*.api.ashtreefarmreedness.online
*.app.ashtreefarmreedness.online
ashtreefarmreedness.online
*.ashtreefarmreedness.online
*.assets.ashtreefarmreedness.online
*.backup.ashtreefarmreedness.online
*.blog.ashtreefarmreedness.online
*.cms.ashtreefarmreedness.online
*.crm.ashtreefarmreedness.online
*.humkqapp.ashtreefarmreedness.online
*.staging.ashtreefarmreedness.online
*.test.ashtreefarmreedness.online
*.uat.ashtreefarmreedness.online
*.w.ashtreefarmreedness.online
*.aging.askaustinauto.online
*.api.askaustinauto.online
*.app.askaustinauto.online
*.apps.askaustinauto.online
askaustinauto.online
*.askaustinauto.online
*.blog.askaustinauto.online
*.cure.askaustinauto.online
*.dashboard.askaustinauto.online
*.demo.askaustinauto.online
*.gokfhdev.askaustinauto.online
*.mail.askaustinauto.online
*.mailer.askaustinauto.online
*.marketing.askaustinauto.online
*.staging.askaustinauto.online
*.v1.askaustinauto.online
*.web.askaustinauto.online
*.zbubapi.askaustinauto.online
*.5716cbc0-766c-4ae7-857a-9290c59652d3.cihuah.art
*.5r6j62.cihuah.art
*.app.cihuah.art
cihuah.art
*.cihuah.art
*.gufhvtsuvqapi.cihuah.art
*.vps.cihuah.art
*.www.cihuah.art
*.5fff6m.flyhomea.com
*.adm.flyhomea.com
flyhomea.com
*.flyhomea.com
*.kmz.flyhomea.com
*.beta.gicos.com
*.blog.gicos.com
*.comune.gicos.com
gicos.com
*.gicos.com
*.m.gicos.com
*.assets.lawlessloser.com
*.backend.lawlessloser.com
*.blog.lawlessloser.com
*.cloud.lawlessloser.com
*.cms.lawlessloser.com
*.kylaaintranet.lawlessloser.com
lawlessloser.com
*.lawlessloser.com
*.portal.lawlessloser.com
*.store.lawlessloser.com
*.webmail.lawlessloser.com
*.49765654-d4e0-44b0-94bb-13bb60b09520.wibet.vin
*.4ad8ae49-7f06-4018-a5cb-a6d312399d7d.wibet.vin
*.admin.wibet.vin
*.app.wibet.vin
*.blog.wibet.vin
*.demo.wibet.vin
*.dev.wibet.vin
*.uazoxblog.wibet.vin
wibet.vin
*.wibet.vin
*.assets.youshopvr.com
*.autodiscover.youshopvr.com
*.b03532e5-a559-4672-940d-ebc88ae9a82a.youshopvr.com
*.backend.youshopvr.com
*.nt4807.youshopvr.com
youshopvr.com
*.youshopvr.com
Other domains in certificate