Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=lujongyoga.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 24, 2026
Valid Until
July 23, 2026
71 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5F:EE:71:F1:92:00:1C:81:DC:F4:44:E4:97:19:59:D7:CF:84:3C:CC:8E:6A:D3:FC:74:9A:7D:36:59:D0:4E:28
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
epik1.digital
*.epik1.digital
12297.loan
*.12297.loan
28196.one
*.28196.one
563106aszf.click
*.563106aszf.click
60703.loan
*.60703.loan
76804.pro
*.76804.pro
81801.sx
*.81801.sx
9to6.in
*.9to6.in
aboh.com
*.aboh.com
*.deustoformacion.aboh.com
abpass.click
*.abpass.click
accesshomeamerica.com
*.accesshomeamerica.com
drnoria.com
*.drnoria.com
earthsbanner.com
*.earthsbanner.com
erocosplayfesf.com
*.erocosplayfesf.com
fire-insights.com
*.fire-insights.com
getasparky.com.au
*.getasparky.com.au
greenbalikesirs.com
*.greenbalikesirs.com
greenhatays.com
*.greenhatays.com
hallofverygood.net
*.hallofverygood.net
hanyanshop.com
*.hanyanshop.com
holidayessential.com
*.holidayessential.com
hypnozen-sophro.com
*.hypnozen-sophro.com
intosnundays.com
*.intosnundays.com
jasminegifford.com
*.jasminegifford.com
knightsbridges.com
*.knightsbridges.com
koplerart.com
*.koplerart.com
lujongyoga.com
*.lujongyoga.com
lusailcityguide.com
*.lusailcityguide.com
oahuhomeinspector.com
*.oahuhomeinspector.com
onlyanalsex.com
*.onlyanalsex.com
oomw.top
*.oomw.top
orence.io
*.orence.io
paan.us
*.paan.us
qudanyun.com
*.qudanyun.com
rekenct.com
*.rekenct.com
remodelgenie.com
*.remodelgenie.com
reniai.com
*.reniai.com
rentfantastic.com
*.rentfantastic.com
resiflowlit.com
*.resiflowlit.com
reviewshelpful.com
*.reviewshelpful.com
russianspeakingagent.com
*.russianspeakingagent.com
russianspeakingagents.com
*.russianspeakingagents.com
santabarbarabowl.org
*.santabarbarabowl.org
*.dev.vuwoo.com
vuwoo.com
*.vuwoo.com
Other domains in certificate