Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=yes2222.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 13, 2026
Valid Until
May 14, 2026
89 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
08:E3:79:65:6B:F0:25:AA:98:6A:CB:6E:2B:57:AD:14:77:C0:FB:0A:41:85:DB:E6:B5:F2:0F:81:1A:07:1A:48
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
classicdesignftc.com
*.classicdesignftc.com
*.gfjze.classicdesignftc.com
*.m.classicdesignftc.com
*.mmwrbzsgn.classicdesignftc.com
*.ptty.classicdesignftc.com
*.uouj.classicdesignftc.com
berberet.com
*.berberet.com
*.cloud.berberet.com
*.h6pel.berberet.com
*.rd.berberet.com
*.rds.berberet.com
*.rdweb.berberet.com
*.remote.berberet.com
*.sre6f.berberet.com
*.wildcard.berberet.com
*.xdpdywildcard.berberet.com
canazza.it
*.canazza.it
*.demo.canazza.it
*.backend.cpx.it
cpx.it
*.cpx.it
*.dev.cpx.it
gabesgame.com
*.gabesgame.com
*.fql.ggbeth.com
ggbeth.com
*.ggbeth.com
*.ic0.ggbeth.com
*.access.giaimo.com
*.ciscoasa.giaimo.com
*.ciscovpn.giaimo.com
*.connect.giaimo.com
*.dbaztwebvpn.giaimo.com
*.exchange.giaimo.com
*.gate.giaimo.com
giaimo.com
*.giaimo.com
*.sslvpn.giaimo.com
*.webvpn.giaimo.com
*.drvpn.inthavong.com
*.hostmaster.inthavong.com
inthavong.com
*.inthavong.com
*.ravpn.inthavong.com
*.wiki.inthavong.com
*.ww38.inthavong.com
iwantitnow.it
*.iwantitnow.it
*.www.iwantitnow.it
jalomo.com
*.jalomo.com
*.m.jalomo.com
*.store.jalomo.com
*.ww1.jalomo.com
*.ww38.jalomo.com
*.ww5.jalomo.com
*.www.jalomo.com
justiciajuvenil.com
*.justiciajuvenil.com
*.m.justiciajuvenil.com
*.sitemap.justiciajuvenil.com
*.vb.justiciajuvenil.com
*.www.justiciajuvenil.com
*.api.lakgun.com
lakgun.com
*.lakgun.com
*.nas.lakgun.com
*.api.r7-cassino.org
*.app.r7-cassino.org
*.lwxqsjeg.r7-cassino.org
r7-cassino.org
*.r7-cassino.org
*.m.recherchebureau.com
recherchebureau.com
*.recherchebureau.com
*.www.recherchebureau.com
satoshigpt.club
*.satoshigpt.club
*.ww1.satoshigpt.club
*.ww2.satoshigpt.club
*.ww25.satoshigpt.club
*.ww3.satoshigpt.club
speculatorpla.net
*.speculatorpla.net
yes2222.com
*.yes2222.com
Other domains in certificate