Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=masini.co
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 24, 2026
Valid Until
August 22, 2026
58 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8E:A7:D0:96:8D:45:2A:12:F2:07:3B:69:5C:4F:FF:9A:25:8C:02:36:91:BA:86:F4:12:8A:37:B8:4B:C4:D4:7F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
application.run
*.application.run
06552.casa
*.06552.casa
48498.one
*.48498.one
55426.one
*.55426.one
adminx.co
*.adminx.co
amadeustradingco.co
*.amadeustradingco.co
auto-loans-br-pt.sbs
*.auto-loans-br-pt.sbs
axie78988v2.xyz
*.axie78988v2.xyz
caiseegenerativesearch.com
*.caiseegenerativesearch.com
construction-jobs-8f3n5s0x8l0.sbs
*.construction-jobs-8f3n5s0x8l0.sbs
dzqvl.onl
*.dzqvl.onl
erovitan.com
*.erovitan.com
expansivefoodthoughts.food
*.expansivefoodthoughts.food
exploreefficiency.xyz
*.exploreefficiency.xyz
flarnodire.sbs
*.flarnodire.sbs
flowyoga.com.au
*.flowyoga.com.au
foodinnovationspath.food
*.foodinnovationspath.food
foodqualitiesconcept.food
*.foodqualitiesconcept.food
fs082890.cc
*.fs082890.cc
gardenfocusexperts.live
*.gardenfocusexperts.live
golocaloutreach.com
*.golocaloutreach.com
gpconsulting.com.au
*.gpconsulting.com.au
indiahost.in
*.indiahost.in
inoni.co
*.inoni.co
integrityintransit.xyz
*.integrityintransit.xyz
kikihan.com
*.kikihan.com
logimd.com
*.logimd.com
login-credithuman.com
*.login-credithuman.com
management-software-us-mtg.click
*.management-software-us-mtg.click
masini.co
*.masini.co
mastertraveladvisor.xyz
*.mastertraveladvisor.xyz
matt-br-78.today
*.matt-br-78.today
member99988v2.xyz
*.member99988v2.xyz
originalmarinese.shop
*.originalmarinese.shop
pricelessfares.com
*.pricelessfares.com
refirmaneptunion.com
*.refirmaneptunion.com
ruay16888v4.xyz
*.ruay16888v4.xyz
theweddingadvance.beauty
*.theweddingadvance.beauty
travelgenix.live
*.travelgenix.live
upkeepmaintenanceonlinehub.com
*.upkeepmaintenanceonlinehub.com
xjkaz.gdn
*.xjkaz.gdn
xn--htuq25e.com
*.xn--htuq25e.com
y6363.com
*.y6363.com
yjkq089.top
*.yjkq089.top
yjnxm.vip
*.yjnxm.vip
Other domains in certificate