Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=sweetlosicecream.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 30, 2026
Valid Until
July 29, 2026
70 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
27:C8:F7:75:67:EA:F3:80:DF:0A:68:95:27:91:BC:75:FB:3D:E7:15:0E:C8:68:AB:CB:7F:CC:33:9A:3C:53:A8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
lemotools.info
*.lemotools.info
*.a.lemotools.info
*.demo.lemotools.info
*.dev.lemotools.info
*.secure.lemotools.info
*.stg.lemotools.info
*.uw5u1z.lemotools.info
*.admin.atlantavillas.com
atlantavillas.com
*.atlantavillas.com
*.mx1.atlantavillas.com
*.random.atlantavillas.com
*.sitemap.atlantavillas.com
*.webvpn.atlantavillas.com
*.3f658f82-cde5-45c7-9607-6b629a6b0a10.bai88.vin
*.aa12a835-0c53-4f8e-88cd-7f07383259c8.bai88.vin
*.adm.bai88.vin
*.admin.bai88.vin
*.api.bai88.vin
*.app.bai88.vin
*.assets.bai88.vin
*.backup.bai88.vin
bai88.vin
*.bai88.vin
*.cms.bai88.vin
*.demo.bai88.vin
*.dev.bai88.vin
*.dykpfdemo.bai88.vin
*.mhctfdev.bai88.vin
*.staging.bai88.vin
*.test.bai88.vin
*.uat.bai88.vin
*.www.bai88.vin
*.5d6082e0-d706-4203-8378-6ef326df32d3.jafinox-rdw.com
jafinox-rdw.com
*.jafinox-rdw.com
kcra3.com
*.kcra3.com
*.ww25.kcra3.com
*.www.kcra3.com
*.control.lemon1.com
*.dating.lemon1.com
*.files.lemon1.com
*.fj.lemon1.com
*.galeria.lemon1.com
*.gold.lemon1.com
*.help.lemon1.com
*.jxj1.lemon1.com
lemon1.com
*.lemon1.com
*.nhac.lemon1.com
*.ns1.lemon1.com
*.old.lemon1.com
*.staging.lemon1.com
*.test.lemon1.com
*.users.lemon1.com
*.wvo.lemon1.com
*.ww1.lemon1.com
*.ww11.lemon1.com
*.xn--0-mr6a.lemon1.com
*.yyn.lemon1.com
*.49othi.msgburn.info
*.afe4bf63-e651-4269-8f14-15cbb358d232.msgburn.info
*.dev.msgburn.info
msgburn.info
*.msgburn.info
*.xtcmhbuz.msgburn.info
*.77hz.qingning3.cc
*.8v.qingning3.cc
*.cqz.qingning3.cc
*.etec.qingning3.cc
*.fzb.qingning3.cc
*.id7.qingning3.cc
*.joui.qingning3.cc
*.jx.qingning3.cc
*.kn2.qingning3.cc
*.mx5.qingning3.cc
*.nqr.qingning3.cc
*.osuq.qingning3.cc
qingning3.cc
*.qingning3.cc
*.rkza.qingning3.cc
*.ry.qingning3.cc
*.s8s9.qingning3.cc
*.wutk.qingning3.cc
*.zlyl.qingning3.cc
*.hostmaster.sweetlosicecream.com
sweetlosicecream.com
*.sweetlosicecream.com
Other domains in certificate