Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=bestmsm.it
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 10, 2026
Valid Until
May 11, 2026
79 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7F:B5:E2:E0:0E:5C:F1:A3:A9:BE:1C:0E:CE:15:91:CA:62:37:C7:B0:66:F7:4A:C1:E7:1D:FF:96:B6:5B:AA:1F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
zaguri.com
*.zaguri.com
*.administrator.zaguri.com
*.blog.zaguri.com
*.catalogue.zaguri.com
*.cloud.zaguri.com
*.connect.zaguri.com
*.cp.zaguri.com
*.cpanel.zaguri.com
*.crucible.zaguri.com
*.extvpn.zaguri.com
*.files.zaguri.com
*.home.zaguri.com
*.hostmaster.zaguri.com
*.m.zaguri.com
*.remote.zaguri.com
*.reports.zaguri.com
*.unix.zaguri.com
*.upload.zaguri.com
*.vpn.zaguri.com
*.wap.zaguri.com
*.webmail.zaguri.com
*.wiki.zaguri.com
*.ww02.zaguri.com
*.ww16.zaguri.com
*.ww25.zaguri.com
*.www2.zaguri.com
analsextubes.com
*.analsextubes.com
*.www.analsextubes.com
bakayoko.com
*.bakayoko.com
*.hvtruww1.bakayoko.com
*.lyncdiscoverinternal.bakayoko.com
*.m.bakayoko.com
*.rustore.bakayoko.com
*.sip.bakayoko.com
*.sipexternal.bakayoko.com
*.sipinternal.bakayoko.com
*.sitemaps.bakayoko.com
*.sl.bakayoko.com
barbeelux.com
*.barbeelux.com
*.pay.barbeelux.com
*.admin.bestmsm.it
bestmsm.it
*.bestmsm.it
coast2coastbuses.com
*.coast2coastbuses.com
digitalmummy.com.au
*.digitalmummy.com.au
dolphinconsultancyltd.com
*.dolphinconsultancyltd.com
dubaiapartments-open.site
*.dubaiapartments-open.site
*.www.dubaiapartments-open.site
etofsarl.me
*.etofsarl.me
*.lamb-bland.etofsarl.me
*.quit-offline.etofsarl.me
jackpot777.world
*.jackpot777.world
*.www.jackpot777.world
lokee.com.br
*.lokee.com.br
*.ww38.lokee.com.br
*.freetvshows.micromkv.biz
micromkv.biz
*.micromkv.biz
*.themoviereview.micromkv.biz
mslai.net
*.mslai.net
*.w1.mslai.net
pkmuagiare.com
*.pkmuagiare.com
*.fund.railsafety.com.au
*.m.railsafety.com.au
railsafety.com.au
*.railsafety.com.au
*.sitemap.teslamoney.xyz
teslamoney.xyz
*.teslamoney.xyz
*.www.teslamoney.xyz
verachem.me
*.verachem.me
*.dev.willreifen.at
willreifen.at
*.willreifen.at
zpredir13.me
*.zpredir13.me
Other domains in certificate