SSL Certificate Analysis for laneur.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=kmnote.xyz

Issuer

C=US, O=Let's Encrypt, CN=YR2

Valid From

June 05, 2026

Valid Until

September 03, 2026 85 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

16:4D:7D:89:C1:DD:5E:92:85:6D:52:77:4C:22:B6:25:91:AF:BA:2E:CD:86:09:A4:7B:83:DA:02:E5:4A:58:62

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

laneur.com *.laneur.com *.taybanutritionals.laneur.com *.test.laneur.com

Other domains in certificate

482634.top *.482634.top *.api.482634.top *.backup.482634.top *.dashboard.482634.top *.docs.482634.top *.ebfjvurd.482634.top *.igtxisharepoint.482634.top *.mailer.482634.top *.marketing.482634.top *.members.482634.top *.public.482634.top *.qa.482634.top *.sharepoint.482634.top *.staging.482634.top *.test.482634.top *.uat.482634.top *.web.482634.top *.xwmsoshare.482634.top

*.alpha.bscex.org *.api.bscex.org bscex.org *.bscex.org *.governance.bscex.org *.h201.bscex.org *.ido.bscex.org *.kelly.bscex.org *.launchpadx.bscex.org *.launchpoolx.bscex.org *.launchpoolxv1.bscex.org *.launchpoolxv3.bscex.org *.listen.bscex.org *.malta.bscex.org *.onyx.bscex.org *.php.bscex.org *.prod.bscex.org *.redirect.bscex.org *.swap.bscex.org *.swapx.bscex.org *.test.bscex.org *.use.bscex.org *.vs.bscex.org *.wangshangwanbaijialeshizhendema.bscex.org *.ww16.bscex.org *.ww25.bscex.org *.ww38.bscex.org

*.cgprn.fengxiangbo.com fengxiangbo.com *.fengxiangbo.com *.rdq.fengxiangbo.com *.smlc.fengxiangbo.com *.stxls.fengxiangbo.com *.sxvsg.fengxiangbo.com *.upd.fengxiangbo.com *.zij.fengxiangbo.com

kmnote.xyz *.kmnote.xyz *.kwid9.kmnote.xyz *.zl1z8.kmnote.xyz

*.it.later.in later.in *.later.in

veterinariandirectory.au *.veterinariandirectory.au

voicetonote.com *.voicetonote.com *.www.voicetonote.com

*.demo.vulkan888.space *.development.vulkan888.space vulkan888.space *.vulkan888.space

*.1vmplb.wholesalejerseysfactory.info *.a.wholesalejerseysfactory.info *.api.wholesalejerseysfactory.info *.backup.wholesalejerseysfactory.info *.members.wholesalejerseysfactory.info *.staging.wholesalejerseysfactory.info *.test.wholesalejerseysfactory.info *.uat.wholesalejerseysfactory.info wholesalejerseysfactory.info *.wholesalejerseysfactory.info *.www.wholesalejerseysfactory.info

*.api.x6j39.vip *.vip.x6j39.vip x6j39.vip *.x6j39.vip