Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=syamagency.xyz
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 12, 2026
Valid Until
August 10, 2026
76 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
EA:44:67:3A:1C:98:EA:95:EB:CA:9E:2B:30:55:50:7B:F6:69:EF:B9:97:5B:43:A7:BC:48:69:72:63:BA:AB:CA
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
tecno.bio
*.tecno.bio
*.gestao.tecno.bio
*.webmail.tecno.bio
aioo.me
*.aioo.me
*.german.aioo.me
*.apps.hotelllautpalace.com
*.connect.hotelllautpalace.com
*.f5.hotelllautpalace.com
hotelllautpalace.com
*.hotelllautpalace.com
*.32.ihome.life
*.dddd.ihome.life
ihome.life
*.ihome.life
*.a2e67dec-fa0b-4a6a-85cd-8257d5d3b75c.iw9.ag
*.d4ee10c9-c610-4838-8b0e-551632ca9da1.iw9.ag
iw9.ag
*.iw9.ag
*.www.iw9.ag
*.h.jav9.live
jav9.live
*.jav9.live
k6drthb92er6vag4ofg8.xyz
*.k6drthb92er6vag4ofg8.xyz
*.main.k6drthb92er6vag4ofg8.xyz
*.ww38.k6drthb92er6vag4ofg8.xyz
*.business.merriickbank.com
*.jenkins.merriickbank.com
merriickbank.com
*.merriickbank.com
*.pipeline.merriickbank.com
*.preview.merriickbank.com
*.ru.merriickbank.com
*.school.merriickbank.com
*.site.merriickbank.com
*.staff.merriickbank.com
*.visualizations.merriickbank.com
*.ww25.merriickbank.com
*.32.ominous.live
ominous.live
*.ominous.live
*.32.overfly.live
*.47d78e9f-5e87-47f5-b2fb-242ffe16227a.overfly.live
overfly.live
*.overfly.live
*.admin.prudentoal.com
*.app.prudentoal.com
*.b480c947-0643-4c18-99d4-0859eba25bd9.prudentoal.com
*.backup.prudentoal.com
*.eta.prudentoal.com
*.flow.prudentoal.com
*.helpme.prudentoal.com
*.helpme2.prudentoal.com
*.ilgpgparis.prudentoal.com
*.intranet.prudentoal.com
*.ipgaxmytotalrewards.prudentoal.com
*.koxjtflow.prudentoal.com
*.paris.prudentoal.com
*.portal.prudentoal.com
prudentoal.com
*.prudentoal.com
*.pruexpress.prudentoal.com
*.rd.prudentoal.com
*.rds.prudentoal.com
*.rdweb.prudentoal.com
*.read.prudentoal.com
*.remote.prudentoal.com
*.remoteapp.prudentoal.com
*.reset.prudentoal.com
*.secure.prudentoal.com
*.shop.prudentoal.com
*.ts.prudentoal.com
*.vpn.prudentoal.com
*.workspace.prudentoal.com
*.ww38.prudentoal.com
*.www.prudentoal.com
*.zvscrintranet.prudentoal.com
*.19.ql5.cc
*.1n.ql5.cc
ql5.cc
*.ql5.cc
*.ww25.ql5.cc
*.assosiates.syamagency.xyz
*.chat.syamagency.xyz
*.store.syamagency.xyz
syamagency.xyz
*.syamagency.xyz
*.ww38.syamagency.xyz
Other domains in certificate