Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=lifeaims.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 15, 2026
Valid Until
August 13, 2026
66 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
48:E4:A2:2E:1B:07:B6:80:8E:01:FA:B0:83:65:C7:C5:A0:4B:40:F1:5E:E8:3B:FB:AE:71:8B:3B:31:EE:28:5A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
voll.bio
*.voll.bio
*.analytics.voll.bio
*.app.voll.bio
a6k2e.com
*.a6k2e.com
*.www.a6k2e.com
deepmaturexxx.cc
*.deepmaturexxx.cc
*.www.deepmaturexxx.cc
hanging.it
*.hanging.it
*.hostmaster.hanging.it
*.www.hanging.it
joinblynked.com
*.joinblynked.com
joincrmcentric.com
*.joincrmcentric.com
*.gateway.ki-ka.com
ki-ka.com
*.ki-ka.com
*.rds.ki-ka.com
*.com.lifeaims.com
*.cpcalendars.lifeaims.com
lifeaims.com
*.lifeaims.com
*.m.lifeaims.com
*.mail.lifeaims.com
*.realty.lifeaims.com
*.xyz.lifeaims.com
msindo.id
*.msindo.id
mushroommayhem.com
*.mushroommayhem.com
pohon8-amp.asia
*.pohon8-amp.asia
*.tcd7io.pohon8-amp.asia
*.connected-card-transaction-listener-us.rauchy.net
*.dev.rauchy.net
*.m.rauchy.net
rauchy.net
*.rauchy.net
rik84.net
*.rik84.net
*.secure.rik84.net
*.www.rik84.net
*.32.rtyhtyuj.shop
rtyhtyuj.shop
*.rtyhtyuj.shop
*.ww25.rtyhtyuj.shop
*.hbku7l.specializeamplifyymagnet.info
specializeamplifyymagnet.info
*.specializeamplifyymagnet.info
*.api.tathawade.com
*.backend.tathawade.com
*.cloud.tathawade.com
*.connect.tathawade.com
*.crjcjts.tathawade.com
*.dashboards.tathawade.com
*.dev.tathawade.com
*.fedena.tathawade.com
*.gp.tathawade.com
*.mahindrahappinest.tathawade.com
*.portal.tathawade.com
*.rdweb.tathawade.com
*.remote.tathawade.com
*.remoteapp.tathawade.com
*.remoto.tathawade.com
*.reporting.tathawade.com
*.shop.tathawade.com
tathawade.com
*.tathawade.com
*.ts.tathawade.com
*.vdi.tathawade.com
*.visual.tathawade.com
*.visualization.tathawade.com
*.webvpn.tathawade.com
*.wlwcfrdweb.tathawade.com
unblockedwtf.com
*.unblockedwtf.com
*.cdn1.wecima.info
*.cdn11.wecima.info
*.cdn2.wecima.info
*.cdn3.wecima.info
*.cdn4.wecima.info
*.cdn5.wecima.info
*.cdn7.wecima.info
*.cdn8.wecima.info
wecima.info
*.wecima.info
Other domains in certificate