Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=jiahedefu.cn
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 18, 2026
Valid Until
August 16, 2026
64 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
26:74:D1:DD:6C:0F:B7:73:EA:E7:40:29:5C:CD:39:1C:41:60:7F:08:38:17:96:EA:61:EB:44:1F:0C:23:6E:0E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
iceprotect.co
*.iceprotect.co
ecovini.com
*.ecovini.com
eietop.cfd
*.eietop.cfd
enlyststaffing.co
*.enlyststaffing.co
everydaytips.co
*.everydaytips.co
fames.today
*.fames.today
fapmod.co
*.fapmod.co
fastdirections.co
*.fastdirections.co
fenixsite.co
*.fenixsite.co
findamazingseniorliving.co
*.findamazingseniorliving.co
freedomleague.co
*.freedomleague.co
freereelviews.top
*.freereelviews.top
fruitjuiceconcentrates.org
*.fruitjuiceconcentrates.org
genuinegirl.co
*.genuinegirl.co
getluxury.co
*.getluxury.co
gossipgraceful.live
*.gossipgraceful.live
gowrealtips.co
*.gowrealtips.co
halaclub.com
*.halaclub.com
heatingdirect.co
*.heatingdirect.co
helpimprint.co
*.helpimprint.co
hotelcasamodelia.co
*.hotelcasamodelia.co
hsfcu.co
*.hsfcu.co
indiamvfa.click
*.indiamvfa.click
institutoconducar.co
*.institutoconducar.co
jackpotspin.pro
*.jackpotspin.pro
jailbroken.co
*.jailbroken.co
javpanda.co
*.javpanda.co
jci-consulting.co
*.jci-consulting.co
jiahedefu.cn
*.jiahedefu.cn
juagame.top
*.juagame.top
justviral.co
*.justviral.co
justwatching.co
*.justwatching.co
kn0x.co
*.kn0x.co
kpnirta.cfd
*.kpnirta.cfd
kub7qzo.top
*.kub7qzo.top
leaderswholaunch.co
*.leaderswholaunch.co
leakedearly.co
*.leakedearly.co
lemluxury.info
*.lemluxury.info
litelearning.co
*.litelearning.co
local-weather.co
*.local-weather.co
lydoi.com
*.lydoi.com
maariv.co
*.maariv.co
maasandbath.co
*.maasandbath.co
magpierobin.com
*.magpierobin.com
maltapark.co
*.maltapark.co
Other domains in certificate