Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=mandalanoel.store
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 23, 2026
Valid Until
August 21, 2026
75 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BC:AC:CF:28:B3:26:D7:CB:0B:3D:3F:9B:05:E1:CB:C6:92:DF:24:E5:82:18:45:8F:A2:DC:46:14:F8:27:09:04
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
zyebo.com
*.zyebo.com
*.hwbeh.zyebo.com
*.admin.chanakya.app
chanakya.app
*.chanakya.app
*.chart.chanakya.app
*.dev-dash.chanakya.app
*.dev.chanakya.app
*.mx.chanakya.app
*.219117a8-43c2-4dea-b0de-3bc35658d11e.eficomp.directory
eficomp.directory
*.eficomp.directory
*.analytics.giornalistapubblicista.com
*.argo.giornalistapubblicista.com
*.dashboard.giornalistapubblicista.com
*.dashboards.giornalistapubblicista.com
*.dev.giornalistapubblicista.com
giornalistapubblicista.com
*.giornalistapubblicista.com
*.hostmaster.giornalistapubblicista.com
*.insight-development.giornalistapubblicista.com
*.install.giornalistapubblicista.com
*.metrics.giornalistapubblicista.com
*.reporting.giornalistapubblicista.com
*.superset.giornalistapubblicista.com
*.admin.mandalanoel.store
*.flow.mandalanoel.store
*.hostmaster.mandalanoel.store
*.m.mandalanoel.store
mandalanoel.store
*.mandalanoel.store
*.praehmjs.mandalanoel.store
*.qa.mandalanoel.store
*.ww1.mandalanoel.store
*.www.mandalanoel.store
*.1.paolapierri.info
*.6bb65321-ad91-40d3-ba2d-f12517d11e61.paolapierri.info
*.a.paolapierri.info
*.adminer.paolapierri.info
*.autodiscover.paolapierri.info
*.backup.paolapierri.info
*.blogs.paolapierri.info
*.bmail.paolapierri.info
*.cancel.paolapierri.info
*.cpcontacts.paolapierri.info
*.dashboard.paolapierri.info
*.demo.paolapierri.info
*.dev.paolapierri.info
*.drive.paolapierri.info
*.ftp.paolapierri.info
*.hm.paolapierri.info
*.hotne1.paolapierri.info
*.m.paolapierri.info
*.mail.paolapierri.info
*.mailer.paolapierri.info
*.marketing.paolapierri.info
*.mta-sts.paolapierri.info
paolapierri.info
*.paolapierri.info
*.picabtest.paolapierri.info
*.qa.paolapierri.info
*.server01.paolapierri.info
*.staging.paolapierri.info
*.stg.paolapierri.info
*.test.paolapierri.info
*.uat.paolapierri.info
*.v2.paolapierri.info
*.vgyxreqsjjwhm.paolapierri.info
*.web.paolapierri.info
*.webmail.paolapierri.info
*.whm.paolapierri.info
*.www1.paolapierri.info
*.backend.touchstyle.it
*.redash.touchstyle.it
*.reporting.touchstyle.it
touchstyle.it
*.touchstyle.it
*.aaa0229.tvxxxtv.com
*.aaa0505.tvxxxtv.com
*.bbb0226.tvxxxtv.com
tvxxxtv.com
*.tvxxxtv.com
*.cloud.xn--eqrt2gowmex6b.com
*.rd.xn--eqrt2gowmex6b.com
*.sitemap.xn--eqrt2gowmex6b.com
*.sitemaps.xn--eqrt2gowmex6b.com
xn--eqrt2gowmex6b.com
*.xn--eqrt2gowmex6b.com
Other domains in certificate