SSL Certificate Analysis for hostmaster.mangyou.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=damanofficial.com

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

February 02, 2026

Valid Until

May 03, 2026 73 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

59:A4:32:59:98:3E:C8:C5:A7:5C:73:D8:DB:D4:F3:CC:0D:F9:5C:25:7E:4C:97:C7:16:E7:B3:E5:2A:43:8C:44

Alternative Names

80 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

80 domains

mangyou.com *.mangyou.com *.m.mangyou.com

Other domains in certificate

1milyons.xyz *.1milyons.xyz *.api.1milyons.xyz *.blog.1milyons.xyz *.dev.1milyons.xyz *.laravel.1milyons.xyz

arham.com *.arham.com *.rustore.arham.com

ateacher.in *.ateacher.in

bkinterspain.com *.bkinterspain.com

cengel.com *.cengel.com *.signin.cengel.com

damanofficial.com *.damanofficial.com *.in.damanofficial.com

gobet-new.com *.gobet-new.com

*.anyconnect.indoagri.com indoagri.com *.indoagri.com

*.dn930.kas77jp1.cfd kas77jp1.cfd *.kas77jp1.cfd

leterme.com *.leterme.com *.sitemap.leterme.com

northentool.com *.northentool.com *.ww25.northentool.com

perydshou.com *.perydshou.com *.www.perydshou.com

previewweb.online *.previewweb.online

sevicioses.com *.sevicioses.com

*.198.seyoyo22.com *.222.seyoyo22.com *.91.seyoyo22.com *.app.seyoyo22.com *.comwww.seyoyo22.com *.iowww.seyoyo22.com *.random.seyoyo22.com seyoyo22.com *.seyoyo22.com

slidesthemaholic.com *.slidesthemaholic.com

*.mail.tantricart.com tantricart.com *.tantricart.com

*.234.toyota-prius.club toyota-prius.club *.toyota-prius.club *.ww38.toyota-prius.club

tuwagaslotalt.cc *.tuwagaslotalt.cc

vatspy.net *.vatspy.net

vettrongloballlc.com *.vettrongloballlc.com

*.stape.vijnana.com vijnana.com *.vijnana.com

*.random.white-house.company white-house.company *.white-house.company

*.internet.wwwcrucial.com *.random.wwwcrucial.com *.ww11.wwwcrucial.com *.ww25.wwwcrucial.com *.ww38.wwwcrucial.com wwwcrucial.com *.wwwcrucial.com