Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=goldenboys.it
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 02, 2026
Valid Until
July 31, 2026
37 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
39:25:18:07:F5:4E:A1:FE:3D:22:82:D4:43:44:88:FB:09:97:14:D6:FE:E1:47:2B:E9:FD:E6:7E:B8:02:38:84
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
weavesil.com
*.weavesil.com
*.ar.weavesil.com
*.download.weavesil.com
*.hao.weavesil.com
*.services.weavesil.com
*.store.weavesil.com
*.users.weavesil.com
*.ww25.weavesil.com
91ss.vip
*.91ss.vip
*.ww17.91ss.vip
*.aniqmail.goldenboys.it
*.backend.goldenboys.it
*.correu.goldenboys.it
*.email.goldenboys.it
*.eposta.goldenboys.it
*.exch2016.goldenboys.it
*.exchangecorp.goldenboys.it
*.exchmail.goldenboys.it
*.exmail2.goldenboys.it
goldenboys.it
*.goldenboys.it
*.hostmaster.goldenboys.it
*.mail1.goldenboys.it
*.mx.goldenboys.it
*.mx001.goldenboys.it
*.mymail.goldenboys.it
*.newmail2013.goldenboys.it
*.ogrencieposta.goldenboys.it
*.rdweb.goldenboys.it
*.remote.goldenboys.it
*.smail.goldenboys.it
*.webmail.goldenboys.it
*.webmail2013.goldenboys.it
goodexlogistics.com
*.goodexlogistics.com
greenemploye.com
*.greenemploye.com
*.mcdonalds.greenemploye.com
*.rmhcooportion.greenemploye.com
*.sparkeys.greenemploye.com
*.ww25.greenemploye.com
*.allinahealth.mysecurebill.co
*.cedarparkreginal.mysecurebill.co
*.coastalhealthcare.mysecurebill.co
mysecurebill.co
*.mysecurebill.co
*.org.mysecurebill.co
*.pbs.mysecurebill.co
*.physiciansregionalpineridge.mysecurebill.co
*.upmc.mysecurebill.co
*.uwmedicine.mysecurebill.co
*.wuphysicians.mysecurebill.co
nzc.de
*.nzc.de
*.random.nzc.de
*.crm.pictureframingwarehousefl.com
*.katalog.pictureframingwarehousefl.com
*.new.pictureframingwarehousefl.com
*.p.pictureframingwarehousefl.com
pictureframingwarehousefl.com
*.pictureframingwarehousefl.com
*.shop.pictureframingwarehousefl.com
*.v3.pictureframingwarehousefl.com
*.vestibular.pictureframingwarehousefl.com
*.windows.pictureframingwarehousefl.com
*.af.playpowerrangers.com
*.en.playpowerrangers.com
*.fi.playpowerrangers.com
*.is.playpowerrangers.com
playpowerrangers.com
*.playpowerrangers.com
*.random.playpowerrangers.com
*.ww17.playpowerrangers.com
*.ww25.playpowerrangers.com
*.ww38.playpowerrangers.com
*.cloudvpn.temporals.com
*.connect.temporals.com
*.gateway.temporals.com
*.hostmaster.temporals.com
*.imap.temporals.com
*.office.temporals.com
*.ravpn.temporals.com
*.rdp.temporals.com
*.secure.temporals.com
*.sslvpn.temporals.com
temporals.com
*.temporals.com
*.www.temporals.com
Other domains in certificate