Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=pounceit.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 24, 2026
Valid Until
July 23, 2026
62 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CB:45:77:D3:FB:36:F9:3C:8F:76:B2:36:FC:CF:C1:C2:0A:01:75:F4:C1:31:AF:F5:71:64:ED:9F:83:D7:E1:C6
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
undertake.it
*.undertake.it
*.api.undertake.it
*.app.undertake.it
*.backend.undertake.it
*.data.undertake.it
*.dev.undertake.it
*.internal.undertake.it
*.metric.undertake.it
*.notexistsstaging.undertake.it
*.should.undertake.it
*.stats.undertake.it
*.summary.undertake.it
*.superset.undertake.it
*.visual.undertake.it
bestluxuryescape.com
*.bestluxuryescape.com
*.random.bestluxuryescape.com
*.wiki.bestluxuryescape.com
*.backend.culturehub.co
culturehub.co
*.culturehub.co
*.dutch.electricscissorlifts.com
electricscissorlifts.com
*.electricscissorlifts.com
*.french.electricscissorlifts.com
*.german.electricscissorlifts.com
*.greek.electricscissorlifts.com
*.italian.electricscissorlifts.com
*.japanese.electricscissorlifts.com
*.korean.electricscissorlifts.com
*.portuguese.electricscissorlifts.com
*.russian.electricscissorlifts.com
*.spanish.electricscissorlifts.com
filmyzillla.xyz
*.filmyzillla.xyz
*.ww1.filmyzillla.xyz
*.ww2.filmyzillla.xyz
*.ww25.filmyzillla.xyz
*.ww38.filmyzillla.xyz
*.14eeebdf-9e50-4889-a740-150c348b43ea.hostmodel.com
*.46756a75-b010-4db9-a848-5f03be28c9d5.hostmodel.com
*.80a719f3-74a6-400f-b5dc-6bea6d50ba2f.hostmodel.com
*.8ceb33d0-a304-4281-ad47-822646fdb630.hostmodel.com
*.a.hostmodel.com
*.accounts.hostmodel.com
*.admin.hostmodel.com
*.api.hostmodel.com
*.app.hostmodel.com
*.assets.hostmodel.com
*.backup.hostmodel.com
*.dashboard.hostmodel.com
*.demo.hostmodel.com
*.dev.hostmodel.com
*.eybxdpin.hostmodel.com
*.hostmaster.hostmodel.com
hostmodel.com
*.hostmodel.com
*.innovation.hostmodel.com
*.mail.hostmodel.com
*.mailer.hostmodel.com
*.marketing.hostmodel.com
*.qa.hostmodel.com
*.sckfwapi.hostmodel.com
*.secure.hostmodel.com
*.staging.hostmodel.com
*.stg.hostmodel.com
*.test.hostmodel.com
*.uat.hostmodel.com
*.v1.hostmodel.com
*.v2.hostmodel.com
*.web.hostmodel.com
*.ylgtkera.hostmodel.com
*.zmosav2.hostmodel.com
*.dev.pounceit.com
*.forum.pounceit.com
*.home.pounceit.com
*.hostmaster.pounceit.com
*.new.pounceit.com
pounceit.com
*.pounceit.com
*.remote.pounceit.com
*.sitemaps.pounceit.com
*.temp.pounceit.com
*.20392d4d-9555-4183-a233-ec940d53e8e8.tryauditnow.co
tryauditnow.co
*.tryauditnow.co
vrdriverless.com
*.vrdriverless.com
*.www.vrdriverless.com
Other domains in certificate