Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=yaysay.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 20, 2026
Valid Until
August 18, 2026
60 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
EB:FD:0F:C6:DF:2F:69:FB:93:14:09:F0:38:3B:AA:B0:10:92:65:25:6F:67:08:A2:A4:C1:3F:FE:B3:BB:14:D6
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
88 domains
adicolo.com
*.adicolo.com
*.m.adicolo.com
ajudareganhar.info
*.ajudareganhar.info
*.m.ajudareganhar.info
*.members.ajudareganhar.info
*.new.ajudareganhar.info
*.rustore.ajudareganhar.info
*.staging.ajudareganhar.info
bullies.com.au
*.bullies.com.au
*.ww25.bullies.com.au
coldprints.co
*.coldprints.co
*.ww25.coldprints.co
ether.best
*.ether.best
*.redash.ether.best
*.werkenbij.ether.best
hallamsjoinery.co.uk
*.hallamsjoinery.co.uk
hometrix.co
*.hometrix.co
*.cpcontacts.houstonartmuseum.com
houstonartmuseum.com
*.houstonartmuseum.com
*.webmail.houstonartmuseum.com
idealpockets.club
*.idealpockets.club
*.preprod.idealpockets.club
*.static.idealpockets.club
*.superset.idealpockets.club
*.ww25.idealpockets.club
*.bidwww.jiduo.xyz
jiduo.xyz
*.jiduo.xyz
*.jk.jiduo.xyz
*.spacewww.jiduo.xyz
*.ww25.jiduo.xyz
*.xyzwww.jiduo.xyz
*.zlcfkww25.jiduo.xyz
*.auth.leashgeek.com
*.cloud.leashgeek.com
*.data.leashgeek.com
leashgeek.com
*.leashgeek.com
*.rd.leashgeek.com
*.rds.leashgeek.com
*.rdweb.leashgeek.com
*.remote.leashgeek.com
*.seguro.leashgeek.com
liam.com.au
*.liam.com.au
*.ww25.liam.com.au
*.50e8d298-1d72-4829-a45f-9be3227d0c1c.lilysbakesblog.com
*.api.lilysbakesblog.com
*.app.lilysbakesblog.com
*.c3cb95e0-c9bb-4b3f-9a97-541f0d0fad21.lilysbakesblog.com
*.dev.lilysbakesblog.com
lilysbakesblog.com
*.lilysbakesblog.com
*.members.lilysbakesblog.com
*.vpn.lilysbakesblog.com
*.www.lilysbakesblog.com
*.hostmaster.moviesda.co
*.hq.moviesda.co
moviesda.co
*.moviesda.co
*.ww11.moviesda.co
rock-wealth.com.au
*.rock-wealth.com.au
rtplgobola5.click
*.rtplgobola5.click
*.webdisk.rtplgobola5.click
*.ww38.rtplgobola5.click
*.sitemaps.vlegal.co
vlegal.co
*.vlegal.co
*.demo.yaysay.com
*.dev.yaysay.com
*.random.yaysay.com
*.ww16.yaysay.com
*.ww17.yaysay.com
*.ww25.yaysay.com
yaysay.com
*.yaysay.com
*.ydtbdblog.yaysay.com
Other domains in certificate