SSL Certificate Analysis for webstandards.it - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=kithcen.it

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

February 04, 2026

Valid Until

May 05, 2026 69 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

F4:D2:62:17:F4:65:9F:F2:D5:B0:A8:03:9C:3C:71:CD:3E:AD:DC:83:1B:15:18:79:39:62:CC:CE:A4:65:C9:55

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

webstandards.it *.webstandards.it

Other domains in certificate

kithcen.it *.kithcen.it

kolin.it *.kolin.it

konohaslots.com *.konohaslots.com

ky69-pg3.com *.ky69-pg3.com

landscapes.it *.landscapes.it

latinmodelsearch.com *.latinmodelsearch.com

lats.it *.lats.it

leisiad.com *.leisiad.com

sinismos.lat *.sinismos.lat

sinuniforme.com *.sinuniforme.com

smackdown.it *.smackdown.it

snorefree.co *.snorefree.co

solomio.it *.solomio.it

spacetrdglollc.com *.spacetrdglollc.com

spatialrainforest.com *.spatialrainforest.com

spatialtesla.com *.spatialtesla.com

vendocasale.it *.vendocasale.it

ventennio.it *.ventennio.it

verifyonlinesafety.com *.verifyonlinesafety.com

verismopet.com *.verismopet.com

verkopen.it *.verkopen.it

vern.it *.vern.it

versiberkah.click *.versiberkah.click

verybest.it *.verybest.it

veryers.com *.veryers.com

vestupatopescup.com *.vestupatopescup.com

virtualmarket.it *.virtualmarket.it

vulcan-platinum-club.space *.vulcan-platinum-club.space

webgates.it *.webgates.it

webright.it *.webright.it

welcomebaby.it *.welcomebaby.it

wetaste.it *.wetaste.it

whatsapplus.us *.whatsapplus.us

www33027.vip *.www33027.vip

www7112.vip *.www7112.vip

xmaim2d.top *.xmaim2d.top

xn--9kqy4su8m8vai00m.xyz *.xn--9kqy4su8m8vai00m.xyz

youlike222.net *.youlike222.net

yourinvestpath.cyou *.yourinvestpath.cyou

yrtgk.com *.yrtgk.com

ysav890.xyz *.ysav890.xyz

ytjsmail.xyz *.ytjsmail.xyz

zaokv.bid *.zaokv.bid

zjwvn.bid *.zjwvn.bid