Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=theholding.it
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 04, 2026
Valid Until
May 05, 2026
70 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
6A:8E:97:C1:82:A8:88:09:5F:7D:F9:D6:6F:73:60:38:9C:11:06:45:95:50:3D:4A:6B:79:53:DA:41:64:6E:7D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
trapped.it
*.trapped.it
theholding.it
*.theholding.it
thejackpot.it
*.thejackpot.it
themarketoutlet.it
*.themarketoutlet.it
thescientists.it
*.thescientists.it
thetravelcompany.it
*.thetravelcompany.it
ticketsfor.it
*.ticketsfor.it
tobis.it
*.tobis.it
todaygoldquote.it
*.todaygoldquote.it
topcommercialclean.com
*.topcommercialclean.com
trackwhiz.com
*.trackwhiz.com
trademarketexchange.cfd
*.trademarketexchange.cfd
tradeopportunitiesportal.cfd
*.tradeopportunitiesportal.cfd
trailheadutv.com
*.trailheadutv.com
traniodealplore.cyou
*.traniodealplore.cyou
trasferimentodiproprieta.it
*.trasferimentodiproprieta.it
trasforma.it
*.trasforma.it
tree-trimmimg-job-grey-pan.click
*.tree-trimmimg-job-grey-pan.click
trendyapparelfind.sbs
*.trendyapparelfind.sbs
tri-eagle.com
*.tri-eagle.com
trickshot.it
*.trickshot.it
tryboosthub.org
*.tryboosthub.org
trys.it
*.trys.it
turf-companies-agent-d.click
*.turf-companies-agent-d.click
twofiko608.vip
*.twofiko608.vip
txdwilmt.com
*.txdwilmt.com
txld3045.icu
*.txld3045.icu
ulrxnd.cc
*.ulrxnd.cc
ultimatevacationspots.xyz
*.ultimatevacationspots.xyz
unjewelled.com
*.unjewelled.com
urbangossiphour.xyz
*.urbangossiphour.xyz
us-puravivepuravive.com
*.us-puravivepuravive.com
vacanze-offerte.it
*.vacanze-offerte.it
vancar.it
*.vancar.it
viadelgusto.it
*.viadelgusto.it
viagentic.com
*.viagentic.com
viaggioitalia.it
*.viaggioitalia.it
vintagecar.it
*.vintagecar.it
vipu18677.shop
*.vipu18677.shop
vyoiy.pro
*.vyoiy.pro
walkyourway.it
*.walkyourway.it
waragainstweasels.com
*.waragainstweasels.com
websitecoupon.it
*.websitecoupon.it
webuyhome.it
*.webuyhome.it
weddingadornedelegance.beauty
*.weddingadornedelegance.beauty
Other domains in certificate