SSL Certificate Analysis for coco.yunyoujun.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Certificate Information

Subject

CN=leyandrom.club

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

January 06, 2026

Valid Until

April 06, 2026 57 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

95:4A:A9:AF:72:77:57:57:32:34:99:FF:2B:6A:CC:86:DD:D8:AA:9F:F5:18:E3:61:18:70:62:65:5C:FB:97:7E

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

yunyoujun.com *.yunyoujun.com *.ccok.yunyoujun.com *.cock.yunyoujun.com *.cok.yunyoujun.com *.coke.yunyoujun.com *.cokk.yunyoujun.com *.cook.yunyoujun.com *.girid.yunyoujun.com *.hao.yunyoujun.com *.kook.yunyoujun.com *.ww25.yunyoujun.com

Other domains in certificate

afmod.com *.afmod.com *.alamattelepon.afmod.com *.ar.afmod.com *.contents-premium.afmod.com *.delivery.afmod.com *.edu.afmod.com *.toyota-land-cruiser-prado.afmod.com *.transactionservices.afmod.com *.update.afmod.com *.whatsappworld4u.afmod.com *.whatsappworldu.afmod.com *.www.afmod.com *.ye.afmod.com

alqanime.com *.alqanime.com *.mail.alqanime.com *.ww25.alqanime.com

boga388.bet *.boga388.bet

gitlswallowed.co *.gitlswallowed.co *.ww25.gitlswallowed.co

hcharacter.ai *.hcharacter.ai

hubhub43.xyz *.hubhub43.xyz

*.io.istana8899-proampproampp.click istana8899-proampproampp.click *.istana8899-proampproampp.click *.nt.istana8899-proampproampp.click

*.adminmail.leyandrom.club *.arc.leyandrom.club *.calcium.leyandrom.club *.comments.leyandrom.club *.d-image.leyandrom.club *.diffusion.leyandrom.club *.dsl.leyandrom.club *.hf.leyandrom.club leyandrom.club *.leyandrom.club *.pv.leyandrom.club *.rt1.leyandrom.club *.shib.leyandrom.club *.sm.leyandrom.club *.sm2.leyandrom.club

membersave.club *.membersave.club *.zed5scfqpf.membersave.club

*.m1.moviezn.site moviezn.site *.moviezn.site *.smtp.moviezn.site

*.ftp.offerstore.store *.mail.offerstore.store offerstore.store *.offerstore.store *.ww38.offerstore.store

reina.live *.reina.live

smarketly.co *.smarketly.co *.static.smarketly.co *.ww25.smarketly.co *.ww38.smarketly.co

*.cdn.theasianporn.net *.cdn1.theasianporn.net *.cdn2.theasianporn.net *.cdn4.theasianporn.net theasianporn.net *.theasianporn.net *.ww38.theasianporn.net *.www.theasianporn.net

*.blog.torihiki.site *.mzdkcv3p7nhenqzn.torihiki.site torihiki.site *.torihiki.site