Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=hayfun.net
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
May 31, 2026
Valid Until
August 29, 2026
66 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
04:23:54:EE:93:43:45:E7:39:DE:70:B1:5F:4E:8B:78:3E:91:C3:1C:85:50:63:D7:55:D0:E2:5F:98:1C:C9:E2
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
70 domains
ilos.it
*.ilos.it
*.hostmaster.ilos.it
*.mta-sts.ilos.it
*.staging.ilos.it
*.venezia.ilos.it
*.4kwiki.bidlhgy.cc
bidlhgy.cc
*.bidlhgy.cc
haijiao.gg
*.haijiao.gg
*.ww17.haijiao.gg
*.arehyuser.hayfun.net
*.cloud.hayfun.net
*.erp.hayfun.net
*.external.hayfun.net
hayfun.net
*.hayfun.net
*.server.hayfun.net
*.test-api.hayfun.net
*.vwgqsservice.hayfun.net
houjieshangcheng.com
*.houjieshangcheng.com
*.share.houjieshangcheng.com
*.www.houjieshangcheng.com
liposomalnutra.com
*.liposomalnutra.com
*.nextcloud.liposomalnutra.com
*.pay.liposomalnutra.com
*.uxzpvsitemap.liposomalnutra.com
*.demo.nyhomerentals.com
*.insight.nyhomerentals.com
nyhomerentals.com
*.nyhomerentals.com
*.admin.slotcoin138.com
*.dev.slotcoin138.com
*.facebook.slotcoin138.com
*.pets.slotcoin138.com
slotcoin138.com
*.slotcoin138.com
*.www.slotcoin138.com
*.06197b14-9220-410f-893f-e6d4f73e4ea7.trashtreasure.app
*.dev.trashtreasure.app
*.rustore.trashtreasure.app
*.static.trashtreasure.app
trashtreasure.app
*.trashtreasure.app
*.access.travelsite.net
*.app.travelsite.net
*.caymanislandsyp.travelsite.net
*.cloud.travelsite.net
*.gateway.travelsite.net
*.gw.travelsite.net
*.mail.travelsite.net
*.ntmkwaccess.travelsite.net
*.portal.travelsite.net
*.rdp.travelsite.net
*.rds1.travelsite.net
*.rdweb.travelsite.net
*.rdweb2019.travelsite.net
*.remote.travelsite.net
*.remote2016.travelsite.net
*.remote2019.travelsite.net
*.remoteapp.travelsite.net
*.sitemaps.travelsite.net
travelsite.net
*.travelsite.net
*.ts.travelsite.net
*.vpn1.travelsite.net
*.web.travelsite.net
Other domains in certificate