Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=cummingrheumatologyandarthritis.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 04, 2026
Valid Until
May 05, 2026
68 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
FE:2A:BC:FE:7E:DE:81:E4:56:C9:0A:48:69:75:DC:80:BD:48:5B:D7:92:8E:17:79:EF:BD:60:B3:D7:A3:1B:46
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
splendo.it
*.splendo.it
cummingrheumatologyandarthritis.com
*.cummingrheumatologyandarthritis.com
sicnu.net.cn
*.sicnu.net.cn
pys.it
*.pys.it
q68bet.vip
*.q68bet.vip
qlpdxvjk.xyz
*.qlpdxvjk.xyz
qrcode-generator.pro
*.qrcode-generator.pro
querycrew.com
*.querycrew.com
radiantsteer.com
*.radiantsteer.com
radiograph.it
*.radiograph.it
rare-carat-100496354.click
*.rare-carat-100496354.click
remarkableness.mom
*.remarkableness.mom
rend.it
*.rend.it
residentialinsurance.in
*.residentialinsurance.in
retailgroup.co
*.retailgroup.co
retorico.it
*.retorico.it
ricciolino.it
*.ricciolino.it
riceve.it
*.riceve.it
richter.it
*.richter.it
royalflushes.it
*.royalflushes.it
rtpbigpot88.sbs
*.rtpbigpot88.sbs
rtpbravobet77.monster
*.rtpbravobet77.monster
rvtools.info
*.rvtools.info
scienzae.it
*.scienzae.it
scrigni.it
*.scrigni.it
secretroom.it
*.secretroom.it
seer.it
*.seer.it
serenade.it
*.serenade.it
sevgiodalari.org
*.sevgiodalari.org
sfkkuru.cyou
*.sfkkuru.cyou
shanrends.com
*.shanrends.com
shor.it
*.shor.it
showin.it
*.showin.it
sistemasviluppo.it
*.sistemasviluppo.it
sitifree.it
*.sitifree.it
sitodellavoro.it
*.sitodellavoro.it
skyprimelimited.com
*.skyprimelimited.com
smarthomes.sx
*.smarthomes.sx
smellslike.it
*.smellslike.it
so-patiently.net
*.so-patiently.net
socialfamily.it
*.socialfamily.it
spectron.us
*.spectron.us
st1688.vip
*.st1688.vip
stnandaronioasdalset.cyou
*.stnandaronioasdalset.cyou
streetdogs.it
*.streetdogs.it
Other domains in certificate