Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=42577.co
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 26, 2026
Valid Until
July 25, 2026
58 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
DE:21:1F:7F:B7:A6:6C:35:7F:0F:D9:F1:62:47:06:39:BD:87:AC:87:FA:AB:5E:0F:9A:71:0B:71:6A:29:D6:22
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
tanhao.shop
*.tanhao.shop
*.sitemap.tanhao.shop
*.sitemaps.tanhao.shop
42577.co
*.42577.co
*.4running.kayas.com
*.ad.kayas.com
*.adm.kayas.com
*.adobexd.kayas.com
*.api.kayas.com
*.backup.kayas.com
*.club.kayas.com
*.co.kayas.com
*.dereve.kayas.com
*.dev.kayas.com
*.ece.kayas.com
*.hzcctryffgzjx.kayas.com
*.igpremium.kayas.com
kayas.com
*.kayas.com
*.mail.kayas.com
*.mazaltov.kayas.com
*.members.kayas.com
*.mn.kayas.com
*.mx.kayas.com
*.net.kayas.com
*.newdev.kayas.com
*.oelgbikyh.kayas.com
*.org.kayas.com
*.perfectline.kayas.com
*.premium.kayas.com
*.privacy.kayas.com
*.qa-notifications.kayas.com
*.qxgfbzofvl.kayas.com
*.refundmyhotel.kayas.com
*.rustore.kayas.com
*.so.kayas.com
*.ssl.kayas.com
*.test.kayas.com
*.ttk.kayas.com
*.vps.kayas.com
*.vxouyrxxmc.kayas.com
*.whatsappdev.kayas.com
*.workfinder.kayas.com
*.ww1.kayas.com
*.ww16.kayas.com
*.ww25.kayas.com
*.wwwsubmit.kayas.com
*.xpcxsfmmdgamgf.kayas.com
*.zcfappbxtnct.kayas.com
*.admin.michiganav.com
*.app.michiganav.com
*.backup.michiganav.com
*.blog.michiganav.com
*.ci.michiganav.com
*.crm.michiganav.com
*.data.michiganav.com
*.dev.michiganav.com
*.help.michiganav.com
*.hostmaster.michiganav.com
*.intranet.michiganav.com
michiganav.com
*.michiganav.com
*.notexistsadmin.michiganav.com
*.notexistsstaging.michiganav.com
*.portal.michiganav.com
*.remote.michiganav.com
*.shop.michiganav.com
*.workflow.michiganav.com
*.ww43.michiganav.com
*.archives.privatebankai.com
privatebankai.com
*.privatebankai.com
*.redbusprimarydns.privatebankai.com
*.redbussecondarydns.privatebankai.com
*.admin.skinfitness.com
*.api.skinfitness.com
*.app.skinfitness.com
*.backend.skinfitness.com
*.demo.skinfitness.com
*.dev.skinfitness.com
*.intelligence.skinfitness.com
*.lego.skinfitness.com
*.metric.skinfitness.com
*.reports.skinfitness.com
skinfitness.com
*.skinfitness.com
*.stats.skinfitness.com
*.superset.skinfitness.com
Other domains in certificate