Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=bagbox.it
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 19, 2026
Valid Until
May 20, 2026
87 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
29:DC:3B:FF:78:55:7A:2E:6D:18:04:9B:2D:F0:82:25:66:7E:C3:B9:FD:1F:8C:92:44:39:F0:61:1B:60:47:3D
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
zonae.it
*.zonae.it
bagbox.it
*.bagbox.it
*.bbs.bagbox.it
businessshowsite.com
*.businessshowsite.com
*.api.cestcool.com
*.beta.cestcool.com
*.blog.cestcool.com
cestcool.com
*.cestcool.com
*.dev.cestcool.com
*.mail.cestcool.com
*.rustore.cestcool.com
*.test.cestcool.com
*.ww1.cestcool.com
damenfunkuhren.de
*.damenfunkuhren.de
*.ww16.damenfunkuhren.de
dental-care-0218-1.click
*.dental-care-0218-1.click
*.autoconfig.kirkbogos.com
*.cpcontacts.kirkbogos.com
kirkbogos.com
*.kirkbogos.com
*.m.kirkbogos.com
*.newsite.kirkbogos.com
*.rdweb.kirkbogos.com
*.stage.kirkbogos.com
*.webdisk.kirkbogos.com
*.whm.kirkbogos.com
*.app.leonbets-tf56.top
*.autoconfig.leonbets-tf56.top
leonbets-tf56.top
*.leonbets-tf56.top
*.m.leonbets-tf56.top
*.www1.leonbets-tf56.top
*.bigdata.libertadiscelta.it
libertadiscelta.it
*.libertadiscelta.it
*.2fe692a7-2021-4217-8fbc-e2bf6054c37d.m88l.vip
*.33b7e675-be7f-4fb5-a023-f0b426b69cf5.m88l.vip
*.6afdb883-4065-4e1f-920d-ee82597f73ec.m88l.vip
*.7646ea27-3f77-40e1-8e35-91b16cacd2f9.m88l.vip
*.793da370-6725-4ae4-9c1e-bf475b87ba76.m88l.vip
*.93721af8-cf35-407c-8032-49f8cc549dee.m88l.vip
*.9a7a25aa-61ff-4c42-aa43-499654ce2763.m88l.vip
*.a0c27f67-7240-4482-9107-618566a35981.m88l.vip
*.admin.m88l.vip
*.api.m88l.vip
*.app.m88l.vip
*.assets.m88l.vip
*.bc6bafc6-2b63-486e-b1dc-46d472872e15.m88l.vip
*.ca3c3e08-ce61-4f90-9ed0-d7adcf62bbc3.m88l.vip
*.dev.m88l.vip
*.eposta.m88l.vip
*.eye.m88l.vip
*.f25ae0c9-d7e5-479c-b013-fb76fdc410a4.m88l.vip
*.hostmaster.m88l.vip
m88l.vip
*.m88l.vip
*.members.m88l.vip
*.test.m88l.vip
*.vip.m88l.vip
*.www.m88l.vip
*.app.vrbangerd.com
*.demo.vrbangerd.com
*.kefu.vrbangerd.com
*.shop.vrbangerd.com
*.store.vrbangerd.com
*.vip.vrbangerd.com
vrbangerd.com
*.vrbangerd.com
*.wap.vrbangerd.com
*.www.vrbangerd.com
yosemite.it
*.yosemite.it
yp2rk5qb4zmpqm.xyz
*.yp2rk5qb4zmpqm.xyz
yt123.biz
*.yt123.biz
yyhhz100.sbs
*.yyhhz100.sbs
yyy568.top
*.yyy568.top
zendegimosbat.org
*.zendegimosbat.org
zjjkw6b.cyou
*.zjjkw6b.cyou
Other domains in certificate