Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=youwusff5.top
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 23, 2026
Valid Until
August 21, 2026
64 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3C:E1:84:E5:CA:4D:8F:14:DA:F1:1C:8B:2E:27:4E:CF:CC:4A:D1:7A:78:9F:54:D8:7F:28:CA:52:70:F6:A0:E6
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
scandifio.com
*.scandifio.com
*.correo.scandifio.com
*.cpcalendars.scandifio.com
*.mymail.scandifio.com
*.vpn.scandifio.com
52583.my
*.52583.my
*.qa.52583.my
*.4qh1cn.capitalsherpagrowth.biz
*.a37pyt.capitalsherpagrowth.biz
*.api.capitalsherpagrowth.biz
*.app.capitalsherpagrowth.biz
*.assets.capitalsherpagrowth.biz
*.backup.capitalsherpagrowth.biz
capitalsherpagrowth.biz
*.capitalsherpagrowth.biz
*.d7c236e8-6658-464b-a469-90157ed2ca10.capitalsherpagrowth.biz
*.demo.capitalsherpagrowth.biz
*.dev.capitalsherpagrowth.biz
*.epkjqadmin.capitalsherpagrowth.biz
*.mail.capitalsherpagrowth.biz
*.staging.capitalsherpagrowth.biz
*.static.capitalsherpagrowth.biz
*.admin.cssinorewards.com
*.chat.cssinorewards.com
*.connect.cssinorewards.com
cssinorewards.com
*.cssinorewards.com
*.desktop.cssinorewards.com
*.docs.cssinorewards.com
*.email.cssinorewards.com
*.external.cssinorewards.com
*.fv5evtlbia.cssinorewards.com
*.info.cssinorewards.com
*.intranet.cssinorewards.com
*.m.cssinorewards.com
*.my.cssinorewards.com
*.portal.cssinorewards.com
*.promo.cssinorewards.com
*.remote.cssinorewards.com
*.shop.cssinorewards.com
*.store.cssinorewards.com
*.tozhtsharepoint.cssinorewards.com
*.vpn.cssinorewards.com
*.www.cssinorewards.com
darlinton.com
*.darlinton.com
*.access.indas.it
*.api.indas.it
*.email.indas.it
*.hostmaster.indas.it
indas.it
*.indas.it
*.owa.indas.it
*.pop.indas.it
*.rds.indas.it
*.reports.indas.it
*.ssl.indas.it
*.api.kjj2e.pro
*.app.kjj2e.pro
*.b0c3e619-86b7-4440-8567-2be371e6aa4f.kjj2e.pro
*.b4114838-b01d-492d-b65b-74e94c7c3349.kjj2e.pro
*.backup.kjj2e.pro
*.dev.kjj2e.pro
kjj2e.pro
*.kjj2e.pro
*.mail.kjj2e.pro
*.secure.kjj2e.pro
*.staging.kjj2e.pro
*.uat.kjj2e.pro
*.www.kjj2e.pro
nutrishoplagunaniguel.com
*.nutrishoplagunaniguel.com
*.pay.nutrishoplagunaniguel.com
*.test.nutrishoplagunaniguel.com
*.ww38.nutrishoplagunaniguel.com
*.assets.purewellnessplace.com
purewellnessplace.com
*.purewellnessplace.com
*.remote.purewellnessplace.com
*.vpn.purewellnessplace.com
*.vpnssl.purewellnessplace.com
*.webvpn.purewellnessplace.com
*.prod.savvyfyxerclash.info
savvyfyxerclash.info
*.savvyfyxerclash.info
*.2242.youwusff5.top
youwusff5.top
*.youwusff5.top
Other domains in certificate