SSL Certificate Analysis for studiodho.it - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=gzwtacamp.online

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

April 22, 2026

Valid Until

July 21, 2026 60 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

7A:8D:A7:FB:8C:4C:5F:E1:86:5B:25:F1:6B:40:AF:9B:49:DD:E8:36:0A:72:57:D8:64:AA:D2:A0:F1:97:13:5E

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

studiodho.it *.studiodho.it *.imap.studiodho.it *.mx.studiodho.it

Other domains in certificate

*.1c6e9a78-75d7-4f46-a47d-c72481057f97.83103.vip 83103.vip *.83103.vip *.api.83103.vip *.atendimento.83103.vip *.b7aeddbb-bb39-4f0a-897c-d48c75688ddc.83103.vip *.backup.83103.vip *.c5dd987e-66e4-4f5d-aca4-5e42e2eae2e9.83103.vip *.dashboard.83103.vip *.dev.83103.vip *.e066f314-75af-4377-b314-72c9c6e10e27.83103.vip *.hostmaster.83103.vip *.m.83103.vip *.mailer.83103.vip *.members.83103.vip *.qa.83103.vip *.secure.83103.vip *.staging.83103.vip *.texsdmailer.83103.vip *.uat.83103.vip *.v2.83103.vip *.vip.83103.vip *.web.83103.vip *.zrghpdocs.83103.vip

bck67.com *.bck67.com *.random.bck67.com

caelivox.com *.caelivox.com *.d0b1c4e04e86.caelivox.com

documentations.it *.documentations.it *.hostmaster.documentations.it

ezwebcamsex.com *.ezwebcamsex.com *.git.ezwebcamsex.com *.wp.ezwebcamsex.com *.www.ezwebcamsex.com

*.admin.forv.it *.asavpn.forv.it *.email.forv.it forv.it *.forv.it *.intelligence.forv.it *.man.forv.it *.mywork.forv.it *.pvitu.forv.it

*.admin.giftcardreturn.com *.client.giftcardreturn.com giftcardreturn.com *.giftcardreturn.com *.tickets.giftcardreturn.com *.ww38.giftcardreturn.com

gzwtacamp.online *.gzwtacamp.online *.ww25.gzwtacamp.online

jymtrainingja.com *.jymtrainingja.com *.mail.jymtrainingja.com *.ww8.jymtrainingja.com

linkzap.top *.linkzap.top *.qrcodefree.linkzap.top

rabbi.com.au *.rabbi.com.au *.ww25.rabbi.com.au

*.cpanel.rockandpurl.com rockandpurl.com *.rockandpurl.com *.webdisk.rockandpurl.com

*.rd.shbet231.com shbet231.com *.shbet231.com

*.api.trialsoftwaresolution.co *.app.trialsoftwaresolution.co *.blog.trialsoftwaresolution.co *.demo.trialsoftwaresolution.co trialsoftwaresolution.co *.trialsoftwaresolution.co *.www.trialsoftwaresolution.co

*.a.yuchepin.com *.forecast.yuchepin.com *.go.yuchepin.com *.uat.yuchepin.com yuchepin.com *.yuchepin.com