Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=lilypasted.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
March 10, 2026
Valid Until
June 08, 2026
30 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CB:D1:4C:33:C4:EF:0E:42:DC:0E:4E:32:8F:EA:55:CC:7F:D4:17:72:5A:E5:3E:98:3D:D6:2D:D0:E6:DE:EC:D5
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
83 domains
specctrum.net
*.specctrum.net
*.ccmdev.specctrum.net
*.cm.specctrum.net
*.cmdev.specctrum.net
*.hotfix.specctrum.net
*.ww16.specctrum.net
*.ww38.specctrum.net
*.ww6.specctrum.net
1971bet.vip
*.1971bet.vip
candidworld.store
*.candidworld.store
*.random.candidworld.store
dalmatiner-welpen.de
*.dalmatiner-welpen.de
*.202peaklane.dazle.site
*.com.dazle.site
dazle.site
*.dazle.site
*.eriks011.dazle.site
*.marcusmanila.dazle.site
*.tahananph.dazle.site
densitymeters.com
*.densitymeters.com
*.jc.densitymeters.com
*.mobi.densitymeters.com
depobos37278.com
*.depobos37278.com
filma24.bz
*.filma24.bz
*.wildcard.filma24.bz
*.ww12.filma24.bz
*.ww25.filma24.bz
*.ww7.filma24.bz
*.www.filma24.bz
gandosh.online
*.gandosh.online
*.iwak.gandosh.online
*.j1zy8qt7voonnt7a.gandosh.online
*.top.gandosh.online
*.us.gandosh.online
*.uwik.gandosh.online
h100.pro
*.h100.pro
hoshianime.pl
*.hoshianime.pl
*.ww25.hoshianime.pl
infinitysounds.co
*.infinitysounds.co
*.ww38.infinitysounds.co
jinglemarket.club
*.jinglemarket.club
*.ww38.jinglemarket.club
*.demo2.kboxtv.club
*.demo3.kboxtv.club
kboxtv.club
*.kboxtv.club
*.mail.kboxtv.club
*.test3.kboxtv.club
*.webmail.kboxtv.club
*.wordpress.kboxtv.club
lilypasted.com
*.lilypasted.com
*.ww25.lilypasted.com
oceantrenchoffshore.com
*.oceantrenchoffshore.com
ourkingdom.net
*.ourkingdom.net
saxy.pro
*.saxy.pro
shoespromo.shop
*.shoespromo.shop
siwa77.shop
*.siwa77.shop
smartstickers.shop
*.smartstickers.shop
surter.shop
*.surter.shop
survivors.com.au
*.survivors.com.au
tallink.shop
*.tallink.shop
Other domains in certificate