SSL Certificate Analysis for api.yinflow.info - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=best-summer-trip.today

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

May 28, 2026

Valid Until

August 26, 2026 69 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

7F:A3:F0:8B:9A:64:76:FA:89:30:10:76:67:3D:85:2F:9E:8E:93:65:9B:3E:6A:59:F6:76:E9:CB:DC:4E:64:0D

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

yinflow.info *.yinflow.info

Other domains in certificate

02x39.lol *.02x39.lol

082t8.lol *.082t8.lol

30785.co *.30785.co

3dengsolutions.com *.3dengsolutions.com

aipayment.tech *.aipayment.tech

aiqnocode.com *.aiqnocode.com

albaboy.com *.albaboy.com

andyokayartforcauses.com *.andyokayartforcauses.com

anjeer.in *.anjeer.in

ankarastore.com *.ankarastore.com

ankaravitrin.vip *.ankaravitrin.vip

anmolzindagi.co.in *.anmolzindagi.co.in

b27w.shop *.b27w.shop

be-activeer.it.com *.be-activeer.it.com

best-summer-trip.today *.best-summer-trip.today

bet88-vn.cfd *.bet88-vn.cfd

boc1bank.com *.boc1bank.com

bodrum-vacation-package-de.sbs *.bodrum-vacation-package-de.sbs

bodyspaadventure.com *.bodyspaadventure.com

bolaneasytwistseat.com *.bolaneasytwistseat.com

buildforeu.com *.buildforeu.com

businessnearme.xyz *.businessnearme.xyz

c19q.shop *.c19q.shop

dental-agent-de-ww.click *.dental-agent-de-ww.click

dental-agent-de.click *.dental-agent-de.click

dental-agent-nl-ww.click *.dental-agent-nl-ww.click

dental-care-service.click *.dental-care-service.click

digital-marketing-agencies-02.sbs *.digital-marketing-agencies-02.sbs

dkvyf.qpon *.dkvyf.qpon

filmlinks4u.cam *.filmlinks4u.cam

lskbh.gdn *.lskbh.gdn

me2y9.lol *.me2y9.lol

restorcharge.com *.restorcharge.com

rzjch.qpon *.rzjch.qpon

s0lv.cam *.s0lv.cam

s96r.shop *.s96r.shop

safaris.vip *.safaris.vip

salesfieldcraft.com *.salesfieldcraft.com

vulgarobot.studio *.vulgarobot.studio

yinflow.locker *.yinflow.locker

yinflow.love *.yinflow.love

yizelarufe.cfd *.yizelarufe.cfd

youhui4.cc *.youhui4.cc

zhengxinyi.com *.zhengxinyi.com