Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=giuseper.it
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
September 24, 2025
Valid Until
December 23, 2025
36 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
37:6E:7A:78:1E:3D:7C:6A:02:52:D1:00:1E:13:88:B6:AB:9C:EE:0D:EA:77:92:CD:6A:F2:7A:D0:83:6A:C9:D6
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.billett.no
963.ai
ankitportfolio.de
www.arnapurnaevents.in
share.autopilot.ooo
betasaur.com
blueish.me
www.charactersvault.com
chicessence.online
chrisrohr.app
chriswycoff.com
clash.lol
systa.clau.io
www.climbradar.net
www.cmmt.io
uat-cms.adreamtravel.co.th
www.costumestudios.io
covidkhoj.in
dedicio.com.br
nclabs.dev.br
digitalliberia.com
djamo-distribution.djamo.io
downornot.app
rushcountynews.enotice.io
fastor-1.fastor.ai
fitxlifestyle.com
arcaneit.flairtechno.com
fontkeyapp.com
www.forgefiber.org
geneseed.ph
www.geteco.app
giuseper.it
dynamic.goworkout.com.br
gridwise.app
groupes.ca
taskmagic.hkmci.com
www.hummi.app
svd.induwara.me
admin.janamx.com
www.jenga-agency.com
jonathanraspiengeas.com
kdppsa.ca
keuxe.com
khizar.dev
www.kittap.app
www.klcouriers.com
klikvooruit.be
www.koit.app
kushimofficial.com
algomas.lernit.app
www.localee.space
matiasvergara.dev
www.maxime-dutres.com
www.mayoresfuengirola.es
mbblastinginc.ca
www.mchosts.com.au
mijowedsaneena.life
moaibeats.com
www.myoneid.fr
org.oct.im
bo.odoya.pt
oneapp.ltd
www.perfectbookingsystem.com
www.planeutral.uk
prashantkaushik.ca
presentinstant.com
testyeninesil.proaktif.org
pulsar.game
pushtastic.app
rainfall.one
randomwalkingapp.it
www.reskillamericans.org
www.rollscroll.org
www.dropbox.ui-clone.ronne.dev
sahibineulas.com
app.schoolofthought.us
donate.shinningstars.org
shuyingzhang.com
app.signply.com
sudoku.simonton.app
www.app.smartester.io
snbaksi.com
sourceddx.com
tell-admin.specidea.uk
suprswitch.xyz
bodamartinezlam.swanmoments.net
tammyweb.dev
portlandwh.tnshipping.us
toml.dev
staging.toot.co
www.treofinancial.com
tribobarber.com.br
customer.trkx.com
www.venuewalks.com
mod.versori.com
viatrisvirtualboothpcom.com
virtualthere360.com
emaile.wanke.jetzt
l.wapo.do
www.yogawithyanick.com
Other domains in certificate