Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=pontsaintmartin.it
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 14, 2026
Valid Until
August 12, 2026
84 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0F:1D:C6:41:32:FB:7D:47:34:A4:FB:C1:74:F6:21:63:99:E3:F3:E5:16:74:EC:6C:65:4F:CC:70:6E:C7:BE:67
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
vaqueira.es
*.vaqueira.es
*.internet.vaqueira.es
alanyaotel.com
*.alanyaotel.com
*.ebay.alanyaotel.com
*.mail.alanyaotel.com
*.ns2.alanyaotel.com
*.random.alanyaotel.com
*.sitemaps.alanyaotel.com
apda-aspe.org
*.apda-aspe.org
*.web.apda-aspe.org
*.123.b245m.shop
b245m.shop
*.b245m.shop
*.n7.b245m.shop
castingbook.be
*.castingbook.be
compramos-coches.org
*.compramos-coches.org
*.wildcard.compramos-coches.org
*.api.concepte.org
concepte.org
*.concepte.org
*.members.concepte.org
consolidationdebt.com.au
*.consolidationdebt.com.au
deep-health.info
*.deep-health.info
*.fzamjm.deep-health.info
*.cart.diyseo.com.au
diyseo.com.au
*.diyseo.com.au
dosoffer.com
*.dosoffer.com
etty.au
*.etty.au
excuse.com.au
*.excuse.com.au
*.wildcard.excuse.com.au
fcy.au
*.fcy.au
*.ww25.fcy.au
*.ww38.fcy.au
geetanjalicreditcapital.com
*.geetanjalicreditcapital.com
*.ww16.geetanjalicreditcapital.com
hdfilmsitesi.de
*.hdfilmsitesi.de
jackdoorsgaragedoors.co.uk
*.jackdoorsgaragedoors.co.uk
jessicayorzinski.com
*.jessicayorzinski.com
khawarbilal.com
*.khawarbilal.com
lingerie-pics.com
*.lingerie-pics.com
lowesthomeloanrates.com.au
*.lowesthomeloanrates.com.au
*.wildcard.lowesthomeloanrates.com.au
maggies9.com.au
*.maggies9.com.au
*.random.maggies9.com.au
*.ww25.maggies9.com.au
*.comune.pontsaintmartin.it
pontsaintmartin.it
*.pontsaintmartin.it
potteerybarn.com
*.potteerybarn.com
rentalproperties.com.au
*.rentalproperties.com.au
*.app.rsong.com
*.img1-fg.rsong.com
*.login.rsong.com
rsong.com
*.rsong.com
*.secure.rsong.com
*.cdn.thejy.com
*.controlpanel.thejy.com
thejy.com
*.thejy.com
*.users.thejy.com
*.ww16.thejy.com
*.ww25.thejy.com
*.ww31.thejy.com
*.vegas.williamill.com
williamill.com
*.williamill.com
Other domains in certificate